Change logs for cpio source package in Wily
-
cpio (2.11+dfsg-4.1ubuntu1.1) wily-security; urgency=medium * SECURITY UPDATE: out-of-bounds write - debian/patches/CVE-2016-2037.patch: make sure there is at least two bytes available in src/copyin.c, added comment to src/util.c. - CVE-2016-2037 -- Marc Deslauriers <email address hidden> Thu, 18 Feb 2016 09:12:03 -0500
-
cpio (2.11+dfsg-4.1ubuntu1) vivid; urgency=medium * Resynchronise with Debian. Remaining changes: - Don't build a cpio-win32 package since mingw-w64 is in universe. cpio (2.11+dfsg-4.1) unstable; urgency=medium * Apply patch by Vitezslav Cizek of SuSE to fix CVE-2015-1197. Upstream is dormant or no longer existing. To restore the old behaviour use --extract-over-symlinks (Closes: #774669) This issue has been discovered by Alexander Cherepanov. -- Colin Watson <email address hidden> Sun, 08 Mar 2015 09:31:21 +0000