libksba 1.2.0-2ubuntu0.2 source package in Ubuntu

Changelog

libksba (1.2.0-2ubuntu0.2) precise-security; urgency=medium

  * SECURITY UPDATE: denial of service via decoder stack overflow
    - debian/patches/CVE-2016-4353.patch: improve error handling in
      src/ber-decoder.c.
    - CVE-2016-4353
  * SECURITY UPDATE: integer overflow in BER decoder
    - debian/patches/CVE-2016-4354-4355.patch: add overflow checks to
      src/ber-decoder.c.
    - CVE-2016-4354
    - CVE-2016-4355
  * SECURITY UPDATE: denial of service in bad encoding handling
    - debian/patches/CVE-2016-4356.patch: fix encoding of invalid utf-8
      strings in src/dn.c.
    - CVE-2016-4356
  * SECURITY UPDATE: denial of service in bad encoding handling
    - debian/patches/CVE-2016-4574.patch: fix OOB read access in
      src/dn.c.
    - CVE-2016-4574
  * SECURITY UPDATE: denial of service via TLV given length
    - debian/patches/CVE-2016-4579.patch: fix possible read access beyond
      the buffer in src/ber-help.c, src/cert.c, src/name.c, src/ocsp.c.
    - CVE-2016-4579

 -- Marc Deslauriers <email address hidden>  Fri, 13 May 2016 08:45:29 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2016-05-13
Uploaded to:
Precise
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
libs
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Precise updates on 2016-05-17 main libs
Precise security on 2016-05-17 main libs

Downloads

File Size SHA-256 Checksum
libksba_1.2.0.orig.tar.bz2 574.5 KiB 09afce65b03d027cbec10d21464f4f651cdfd269e38b404f83e48d3e2a3c934b
libksba_1.2.0-2ubuntu0.2.debian.tar.gz 13.7 KiB a64e84a124c30346376bb24f9edf59a772cf43a24bf55f023741aaf21ffb175f
libksba_1.2.0-2ubuntu0.2.dsc 2.2 KiB 8d7409e6beffa90f0f7fd87888ef6f7b5047cfbdb97dc7a001b2699e4d3ee7bb

View changes file

Binary packages built by this source

libksba-dev: X.509 and CMS support library - development files

 KSBA (pronounced Kasbah) is a library to make X.509 certificates as
 well as the CMS easily accessible by other applications. Both
 specifications are building blocks of S/MIME and TLS.
 .
 KSBA provides these subsystems: ASN.1 Parser, BER Decoder, BER
 Encoder, Certificate Handling and CMS Handling.
 .
 This package contains the development library files.

libksba8: X.509 and CMS support library

 KSBA (pronounced Kasbah) is a library to make X.509 certificates as
 well as the CMS easily accessible by other applications. Both
 specifications are building blocks of S/MIME and TLS.
 .
 KSBA provides these subsystems: ASN.1 Parser, BER Decoder, BER
 Encoder, Certificate Handling and CMS Handling.
 .
 This package contains the runtime library files.

libksba8-dbgsym: debug symbols for package libksba8

 KSBA (pronounced Kasbah) is a library to make X.509 certificates as
 well as the CMS easily accessible by other applications. Both
 specifications are building blocks of S/MIME and TLS.
 .
 KSBA provides these subsystems: ASN.1 Parser, BER Decoder, BER
 Encoder, Certificate Handling and CMS Handling.
 .
 This package contains the runtime library files.