← Back to team overview

translators-packages team mailing list archive

  1. translators-packages team
  2. Mailing list archive
  3. Message #00295

[Bug 1403650] Re: Sync lua5.1 5.1.5-7.1 (main) from Debian unstable (main)

  Thread PreviousDate PreviousThread Next 
This bug was fixed in the package lua5.1 - 5.1.5-7.1
Sponsored for Jackson Doak (noskcaj)

---------------
lua5.1 (5.1.5-7.1) unstable; urgency=medium

  * Non-maintainer upload.
  * Build-depend on libtool-bin. Closes: #761773.
  * liblua5.1-0-dev: Recommend libtool-bin.

 -- Matthias Klose <doko@xxxxxxxxxx>  Thu, 09 Oct 2014 09:49:29 +0000

lua5.1 (5.1.5-7) unstable; urgency=medium

  * Patch to fix stack overflow in vararg functions (CVE-2014-5461) 
  * Add symlinks to .pc file in order to ease the life of developers:
    {lua-5.1,lua51} -> lua5.1 (Closes: #498416)

 -- Enrico Tassi <gareuselesinge@xxxxxxxxxx>  Wed, 27 Aug 2014 09:46:39
+0200

lua5.1 (5.1.5-6) unstable; urgency=low

  * Fix .pc file to not spit -L/usr/lib but -L/usr/lib/$DEB_HOST_MULTIARCH
    (Closes: #723483)

 -- Enrico Tassi <gareuselesinge@xxxxxxxxxx>  Tue, 17 Sep 2013 23:44:04
+0200

** Changed in: lua5.1 (Ubuntu)
       Status: New => Fix Released

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2014-5461

-- 
You received this bug notification because you are a member of
Translators Packages, which is subscribed to lua5.1 in Ubuntu.
https://bugs.launchpad.net/bugs/1403650

Title:
  Sync lua5.1 5.1.5-7.1 (main) from Debian unstable (main)

Status in lua5.1 package in Ubuntu:
  Fix Released

Bug description:
  Please sync lua5.1 5.1.5-7.1 (main) from Debian unstable (main)

  Explanation of the Ubuntu delta and why it can be dropped:
    * SECURITY UPDATE: possible code execution via overflow in vararg
      functions (LP: #1362278)
      - debian/patches/CVE-2014-5461.patch: properly calculate length in
        src/ldo.c.
      - CVE-2014-5461
  Fixed in debian

  Changelog entries since current vivid version 5.1.5-5ubuntu1:

  lua5.1 (5.1.5-7.1) unstable; urgency=medium

    * Non-maintainer upload.
    * Build-depend on libtool-bin. Closes: #761773.
    * liblua5.1-0-dev: Recommend libtool-bin.

   -- Matthias Klose <doko@xxxxxxxxxx>  Thu, 09 Oct 2014 09:49:29 +0000

  lua5.1 (5.1.5-7) unstable; urgency=medium

    * Patch to fix stack overflow in vararg functions (CVE-2014-5461) 
    * Add symlinks to .pc file in order to ease the life of developers:
      {lua-5.1,lua51} -> lua5.1 (Closes: #498416)

   -- Enrico Tassi <gareuselesinge@xxxxxxxxxx>  Wed, 27 Aug 2014
  09:46:39 +0200

  lua5.1 (5.1.5-6) unstable; urgency=low

    * Fix .pc file to not spit -L/usr/lib but -L/usr/lib/$DEB_HOST_MULTIARCH
      (Closes: #723483)

   -- Enrico Tassi <gareuselesinge@xxxxxxxxxx>  Tue, 17 Sep 2013
  23:44:04 +0200

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/lua5.1/+bug/1403650/+subscriptions

References

  Thread PreviousDate PreviousThread Next