Debian alert DLA-2194-1 (yodl)
From: | Thorsten Alteholz <debian@alteholz.de> | |
To: | debian-lts-announce@lists.debian.org | |
Subject: | [SECURITY] [DLA 2194-1] yodl security update | |
Date: | Thu, 30 Apr 2020 17:17:21 +0200 (CEST) | |
Message-ID: | <alpine.DEB.2.20.2004301714380.19990@jupiter.server.alteholz.net> |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Package : yodl Version : 3.04.00-1+deb8u1 CVE ID : CVE-2016-10375 An issue has been found in yodl, a pre-document language. Hanno Bock discovered that there was a buffer over-read vulnerability. For Debian 8 "Jessie", this problem has been fixed in version 3.04.00-1+deb8u1. We recommend that you upgrade your yodl packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEEYgH7/9u94Hgi6ruWlvysDTh7WEcFAl6q7AJfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDYy MDFGQkZGREJCREUwNzgyMkVBQkI5Njk2RkNBQzBEMzg3QjU4NDcACgkQlvysDTh7 WEfHZw/+J7x/hzRf0WfOPEAz/ap0VtlZLlw3o3kv+UxZ5IxRhJCVVZUwnDljDbop lp9PzOI9viK9AQzcPsxNotcFaFKXCq9ZZPgs6yvO5pzTl5qS6mk+IVCaTyigvvLs veM9frH+6VJ0lNG6WZNDowZkwRGqCaul8Ekld2eoPObHV3+ajgaAf2fkbrExPLWO Cbo8oZTvEnm9rR0CVE1VpxqVIjvFEgceacdfhVFNJhr1trZwFNpBSEdOa+xoDfOM MZg7SIZef5mICPEfPFZaAhoB/sqVrYZIRHu4uUkXqjKsgwS7kBCwIl2R827PDTgJ Ou+Nn/NfQrO3IrpAG1ZNDNR5KThB2vFfWDK1B4NVo6kCNJPYOauL7VeUQnckK6dK qQ7es1O4nL81mhGC3V+oNkEci00s/yWrnk6bCW0J5jBRbi0jOeWqEu4WFC8s+IE+ K+Wu6acC2FhbbHzezGyz6m7SJ8ttiPnVCnbWcqCr9Vfh89BqOFL4KjMCIf74vqhu rKPCDCnPVVpnWoBwWbVOn4X24Dryccth3Cc61xEVJfenKvYJBA1Csa/d59NbAEUl do0o6zvkVkvQLeKASNTtH5VI9b3Fp6RtUZ9QqJExdv9PyWJb81jBLb5Rv4LkpnGj NnY48vKlbOeq4DFDBU+IMGH2xZWHbapo296/UtdJ/qfeHLQguLE= =URhN -----END PGP SIGNATURE-----