Bug number - 768485

Part of package: dpkg.

Bug description:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
Debian Bug report logs -  #768485 dpkg: CVE-2014-8625: format string vulnerability
Package:      dpkg; Maintainer for dpkg is Dpkg Developers <debian-dpkg@lists.debian.org>; Source for dpkg is src:dpkg (PTS, buildd, popcon).
Reported by: Jakub Wilk <jwilk@debian.org>
Date: Fri,  7 Nov 2014 18:45:02 UTC
Severity: normal
Tags: security
Found in versions dpkg/1.17.21, dpkg/1.16.2
Fixed in version dpkg/1.17.22
Done: Guillem Jover <guillem@debian.org>
Bug is archived. No further changes may be made.

All x-patch and x-diff attachments.

Patch	Author	Date
0001-libdpkg-Escape-package-and-architecture-on-control-f.patch	Guillem Jover <guillem@debian.org>	Tue, 11 Nov 2014 02:23:54 +0100

Original bug report here.