Ubuntu
logrotate package

logrotate 3.7.8-4ubuntu2.2 source package in Ubuntu

Changelog

logrotate (3.7.8-4ubuntu2.2) lucid-security; urgency=low

  * SECURITY UPDATE: arbitrary code execution via shell metacharacters in
    log filename
    - debian/patches/CVE-2011-1154.patch: improve shred logic in
      logrotate.c.
    - CVE-2011-1154
  * SECURITY UPDATE: denial of service via invalid characters in log
    filename
    - debian/patches/CVE-2011-1155.patch: properly escape filenames in
      logrotate.c.
    - CVE-2011-1155
 -- Marc Deslauriers <email address hidden>   Fri, 17 Jun 2011 13:50:33 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Lucid
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
admin
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
logrotate_3.7.8.orig.tar.gz 42.2 KiB 21aa3dc830e8cc895ee4199d9325aa1e37cd3b525d0eaef400f66f6c7fc536dd
logrotate_3.7.8-4ubuntu2.2.diff.gz 22.0 KiB e83242ee1767c7f643522bdb0884d284d68fa53909c616f458ea90e9735b1446
logrotate_3.7.8-4ubuntu2.2.dsc 1.7 KiB ec1da46c20e2786cfd520b11e45d45544d09e892a08d183fa90c5ab4af8d66dd

View changes file

Binary packages built by this source

logrotate: No summary available for logrotate in ubuntu lucid.

No description available for logrotate in ubuntu lucid.