| Errata ID | 356 |
|---|---|
| Date | 2016-12-14 |
| Source package | dpkg |
| Fixed in version | 1.16.18.105.201612091413 |
| Description | This update addresses the following issues: * An off-by-one write access in dpkg-deb when parsing the old format .deb control member size has been fixed (CVE-2015-0860) * dpkg did not correctly handle the upgrade case, were a diverted conffile was moved between two packages. This has been fixed. |
| Additional notes | |
| CVE ID | CVE-2015-0860 |
| UCS Bug number | #43147 #43173 |
