blob: 664b7b27ce28ba6d6e4efd4bfefb899f3e48f279 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
|
<define-tag description>LTS security update</define-tag>
<define-tag moreinfo>
<p>Patches a bunch of security vulnerabilities:</p>
<ul>
<li><a href="https://security-tracker.debian.org/tracker/CVE-2014-9380">CVE-2014-9380</a> (Buffer over-read)</li>
<li><a href="https://security-tracker.debian.org/tracker/CVE-2014-9381">CVE-2014-9381</a> (Signedness error)</li>
</ul>
<p>See: <a href="https://www.obrela.com/home/security-labs/advisories/osi-advisory-osi-1402/">https://www.obrela.com/home/security-labs/advisories/osi-advisory-osi-1402/</a>
Patches taken from upstream</p>
<ul>
<li>6b196e011fa456499ed4650a360961a2f1323818 pull/608</li>
<li>31b937298c8067e6b0c3217c95edceb983dfc4a2 pull/609</li>
</ul>
<p>Thanks to Nick Sampanis who is responsible for
both finding and repairing these issues.</p>
<p>For Debian 6 <q>Squeeze</q>, these issues have been fixed in ettercap version 1:0.7.3-2.1+squeeze2</p>
</define-tag>
# do not modify the following line
#include "$(ENGLISHDIR)/lts/security/2014/dla-126.data"
# $Id$
|
