Debian alert DLA-2194-1 (yodl)

From:
             
 
Thorsten Alteholz <debian@alteholz.de> 
To:
             
 
debian-lts-announce@lists.debian.org 
Subject:
             
 
[SECURITY] [DLA 2194-1] yodl security update 
Date:
             
 
Thu, 30 Apr 2020 17:17:21 +0200 (CEST)
Message-ID:
             
 
<alpine.DEB.2.20.2004301714380.19990@jupiter.server.alteholz.net>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : yodl
Version        : 3.04.00-1+deb8u1
CVE ID         : CVE-2016-10375


An issue has been found in yodl, a pre-document language.
Hanno Bock discovered that there was a buffer over-read vulnerability.


For Debian 8 "Jessie", this problem has been fixed in version
3.04.00-1+deb8u1.

We recommend that you upgrade your yodl packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
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=URhN
-----END PGP SIGNATURE-----