logrotate 3.18.0-2ubuntu1.1 source package in Ubuntu
Changelog
logrotate (3.18.0-2ubuntu1.1) impish-security; urgency=medium
* SECURITY UPDATE: DoS via insecure permissions on state file
- debian/patches/ubuntu/CVE-2022-1348-1.patch: skip locking if state
file is world-readable in logrotate.c, logrotate.spec.in,
test/Makefile.am, test/test-0087.sh, test/test-0092.sh,
test/test-config.92.in.
- debian/patches/ubuntu/CVE-2022-1348-2.patch: drop permissions on
state file when ACLs are enabled in logrotate.c, test/test-0048.sh.
- CVE-2022-1348
-- Marc Deslauriers <email address hidden> Wed, 25 May 2022 10:18:32 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Impish
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- admin
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| logrotate_3.18.0.orig.tar.xz | 158.1 KiB | 841f81bf09d0014e4a2e11af166bb33fcd8429cc0c2d4a7d3d9ceb3858cfccc5 |
| logrotate_3.18.0.orig.tar.xz.asc | 833 bytes | e4fcdd01c3336276f09728219c6368f3c3ae5de787be1b71ad71a318a77089a7 |
| logrotate_3.18.0-2ubuntu1.1.debian.tar.xz | 24.3 KiB | 34f6a3f023a851a00974ef76c93b76c3a2e6f50207156e8cf33126e0e21ced03 |
| logrotate_3.18.0-2ubuntu1.1.dsc | 2.3 KiB | 9b686c98a038c1ccc62b7d3ae506ef22c63be4bd277370e6219426251b08aaad |
Available diffs
Binary packages built by this source
- logrotate: No summary available for logrotate in ubuntu impish.
No description available for logrotate in ubuntu impish.
- logrotate-dbgsym: No summary available for logrotate-dbgsym in ubuntu impish.
No description available for logrotate-dbgsym in ubuntu impish.
