[prev in list] [next in list] [prev in thread] [next in thread] 

List:       cygwin-announce
Subject:    Updated: file-5.22-1 [SECURITY]
From:       Corinna Vinschen <corinna-cygwin () cygwin ! com>
Date:       2015-02-18 11:25:55
Message-ID: 20150218112555.GA28956 () calimero ! vinschen ! de
[Download RAW message or body]

I've updated the Cygwin version of file to 5.22-1.

This is an update to the latest official upstream version.  This
release fixes various CVE bugs:

  CVE-2014-9653: malformed elf file causes access to uninitialized memory
  CVE-2014-9621: limit string printing to 100 chars
  CVE-2014-9620: limit the number of ELF notes processed
  CVE-2014-8116: multiple denial of service issues (resource consumption)
  CVE-2014-8117: denial of service issue (resource consumption)


Have fun,
Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Project Co-Leader          cygwin AT cygwin DOT com
Red Hat, Inc.
[prev in list] [next in list] [prev in thread] [next in thread]