Change logs for cpio source package in Wily

  • cpio (2.11+dfsg-4.1ubuntu1.1) wily-security; urgency=medium
    
      * SECURITY UPDATE: out-of-bounds write
        - debian/patches/CVE-2016-2037.patch: make sure there is at least two
          bytes available in src/copyin.c, added comment to src/util.c.
        - CVE-2016-2037
    
     -- Marc Deslauriers <email address hidden>  Thu, 18 Feb 2016 09:12:03 -0500
  • cpio (2.11+dfsg-4.1ubuntu1) vivid; urgency=medium
    
      * Resynchronise with Debian.  Remaining changes:
        - Don't build a cpio-win32 package since mingw-w64 is in universe.
    
    cpio (2.11+dfsg-4.1) unstable; urgency=medium
    
      * Apply patch by Vitezslav Cizek of SuSE to fix CVE-2015-1197.
        Upstream is dormant or no longer existing. To restore the old
        behaviour use --extract-over-symlinks (Closes: #774669)
        This issue has been discovered by Alexander Cherepanov.
     -- Colin Watson <email address hidden>   Sun, 08 Mar 2015 09:31:21 +0000