[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 697-1] bsdiff security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : bsdiff
Version        : 4.3-14+deb7u1
CVE ID         : CVE-2014-9862

It was discovered that there was an "arbitrary write" vulnerability in bsdiff,
a tool to patches between binary files.

For Debian 7 "Wheezy", this issue has been fixed in bsdiff version
4.3-14+deb7u1.

We recommend that you upgrade your bsdiff packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=yDmT
-----END PGP SIGNATURE-----


Reply to: