group.of.nepali.translators team mailing list archive

Thread
Date

[Bug 1781925] Re: Vulnerabilities in znc package CVE-2018-14055 CVE-2018-14056

To: group.of.nepali.translators@xxxxxxxxxxxxxxxxxxx
From: Thomas Ward <teward@xxxxxxxxxxxxxxx>
Date: Thu, 19 Jul 2018 17:04:38 -0000
Reply-to: Bug 1781925 <1781925@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Autosync from Debian Unstable pulled in the fix for this.  1.7.1-1

** Changed in: znc (Ubuntu Cosmic)
       Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of नेपाली
भाषा समायोजकहरुको समूह, which is subscribed to Xenial.
Matching subscriptions: Ubuntu 16.04 Bugs
https://bugs.launchpad.net/bugs/1781925

Title:
  Vulnerabilities in znc package CVE-2018-14055 CVE-2018-14056

Status in znc package in Ubuntu:
  Fix Released
Status in znc source package in Trusty:
  In Progress
Status in znc source package in Xenial:
  In Progress
Status in znc source package in Artful:
  Won't Fix
Status in znc source package in Bionic:
  In Progress
Status in znc source package in Cosmic:
  Fix Released

Bug description:
  Multiple remote vulnerabilities reported in ZNC package:
  CVE-2018-14055, CVE-2018-14056

  Debian LTS has updates available:
  http://www.linuxsecurity.com/content/view/213083?rdf

  Relevant patches in znc git:

  https://github.com/znc/znc/commit/a4a5aeeb17d32937d8c7d743dae9a4cc755ce773
  https://github.com/znc/znc/commit/a7bfbd93812950b7444841431e8e297e62cb524e
  https://github.com/znc/znc/commit/d22fef8620cdd87490754f607e7153979731c69d

  Currently no updates available in Xenial, did not see any existing
  reports.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/znc/+bug/1781925/+subscriptions