Ubuntu
valgrind package

valgrind 1:3.12.0~svn20160714-1ubuntu2.1 source package in Ubuntu

Changelog

valgrind (1:3.12.0~svn20160714-1ubuntu2.1) yakkety-security; urgency=medium

  * SECURITY UPDATE: integer overflow in string_appends
    - debian/patches/CVE-2016-2226.patch: check for overflow in
      coregrind/m_demangle/cplus-dem.c, add xmalloc_failed and xmemdup to
      coregrind/m_demangle/vg_libciface.h.
    - CVE-2016-2226
  * SECURITY UPDATE: use-after-free vulnerabilities
    - debian/patches/CVE-2016-4487_4488.patch: set bsize and ksize in
      coregrind/m_demangle/cplus-dem.c.
    - CVE-2016-4487
    - CVE-2016-4488
  * SECURITY UPDATE: integer overflow in gnu_special
    - debian/patches/CVE-2016-4489.patch: handle case where consume_count
      returns -1 in coregrind/m_demangle/cplus-dem.c.
    - CVE-2016-4489
  * SECURITY UPDATE: integer overflow after sanity checks
    - debian/patches/CVE-2016-4490.patch: parse numbers as integer instead
      of long in coregrind/m_demangle/cp-demangle.c.
    - CVE-2016-4490
  * SECURITY UPDATE: denial of service via infinite recursion
    - debian/patches/CVE-2016-4491.patch: limit recursion in
      coregrind/m_demangle/cp-demangle.c, coregrind/m_demangle/demangle.h.
    - CVE-2016-4491
  * SECURITY UPDATE: buffer overflow in do_type
    - debian/patches/CVE-2016-4492_4493.patch: properly handle large values
      and overflow in coregrind/m_demangle/cplus-dem.c.
    - CVE-2016-4492
    - CVE-2016-4493
  * SECURITY UPDATE: denial of service via infinite recursion
    - debian/patches/CVE-2016-6131.patch: prevent infinite recursion in
      coregrind/m_demangle/cplus-dem.c, add XDUPVEC to
      coregrind/m_demangle/vg_libciface.h.
    - CVE-2016-6131

 -- Marc Deslauriers <email address hidden>  Wed, 07 Jun 2017 15:18:08 -0400

Upload details

Uploaded by:: Marc Deslauriers on 2017-06-07

Uploaded to:: Yakkety

Original maintainer:: Ubuntu Developers

Architectures:: amd64 arm64 armhf i386 mips mipsel mips64 mips64el powerpc ppc64 ppc64el s390x x32

Section:: devel

Urgency:: Medium Urgency

See full publishing history Publishing

Series	Pocket	Published	Component	Section

Builds

Yakkety: amd64 arm64 armhf i386 powerpc ppc64el s390x

Downloads

File	Size	SHA-256 Checksum
valgrind_3.12.0~svn20160714.orig.tar.bz2	10.1 MiB	3f6955d980b23da8a9cfedabb8d48fbb70a89b1e89295bc0cffcb2ae480e2de8
valgrind_3.12.0~svn20160714-1ubuntu2.1.debian.tar.xz	36.3 KiB	67ee8bd3b3bd12d510638e22a55d89f3d089e2bab39f07fa6db6ce63e9d9a485
valgrind_3.12.0~svn20160714-1ubuntu2.1.dsc	2.6 KiB	c401029d73ec40301277d253782e871d851ee3ff3862b757b453edf3319967a0

Available diffs

diff from 1:3.12.0~svn20160714-1ubuntu2 (in Ubuntu) to 1:3.12.0~svn20160714-1ubuntu2.1 (7.3 KiB)

View changes file

Binary packages built by this source

valgrind: No summary available for valgrind in ubuntu yakkety.: No description available for valgrind in ubuntu yakkety.

valgrind-dbg: No summary available for valgrind-dbg in ubuntu yakkety.: No description available for valgrind-dbg in ubuntu yakkety.

valgrind-dbgsym: No summary available for valgrind-dbgsym in ubuntu yakkety.: No description available for valgrind-dbgsym in ubuntu yakkety.

valgrind-mpi: No summary available for valgrind-mpi in ubuntu yakkety.: No description available for valgrind-mpi in ubuntu yakkety.

valgrind-mpi-dbgsym: No summary available for valgrind-mpi-dbgsym in ubuntu yakkety.: No description available for valgrind-mpi-dbgsym in ubuntu yakkety.

Ubuntuvalgrind package

valgrind 1:3.12.0~svn20160714-1ubuntu2.1 source package in Ubuntu

Changelog

Upload details

See full publishing history Publishing

Builds

Downloads

Available diffs

Binary packages built by this source

Ubuntu
valgrind package