[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1054-1] libgxps security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : libgxps
Version        : 0.2.2-2+deb7u1
CVE ID         : CVE-2017-11590
Debian Bug     : #870183

It was discovered that there was a NULL pointer dereference in libgxps, a
library to handle XML Paper Specification specifications.

Specially-crafted input could lead to a remote denial of service attack.

For Debian 7 "Wheezy", this issue has been fixed in libgxps version
0.2.2-2+deb7u1.

We recommend that you upgrade your libgxps packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlmO+G8ACgkQHpU+J9Qx
HlhySA/8D/kUuD8Ql2N5QYh5Xvi9YnRIeNIrk8g5rq/I7gyiRDkc4PBTk3IM0+Nk
xyLvILmOriPbd8L/gauGWbNDfHp3aNpvWYMYVk5X+uHkB0YUcvxNwvKHFHIgt6m9
09OI+4EpvvMpdZiTF0JYBf9UVa6fUj/Wh8n9IkhIqeW+PvoVu5uDwsq5K5RiCxNG
/E+wxZDHcMwGy1BXulUTuR1WYOYRCzJWkcGZ8rC2nN9x6EWu1T4JB55BVvIZZyL7
nppEJoGxo8VLCnr69UUgXs+k3l33m5HuP3jL1t6OrGClotk9c0LQFY9g2ahewCZ9
2bXgErqeyY4HMdz3kAR3+A/fwv0d9NHg81J6UI77zJupJfLlA8y+ZHrPP2H4nyFX
ef+5TzQridgmFrfzFgdqwbAWk47DnGiy/Afu3kdQlEX4rHFNWzadDdo4bIhyq2dA
ZomTTKF4aa3BbSPDFwjzA21UoPG4TWidY6uzFcdLdh0b4KsM0c/pW9oAuX3jaYOP
wt0K7KAdDI2KonY+4Me+eY7mLwrtwSA1vTsRPzgNYVvcecEp4DAzmOVS4q6hjPYQ
wSjyF9E3ygl4L0ea6q91NUQDONui1d972ndKIrOeprZXkYbyHER/bnmua/8+36Fu
z7bYJ4Bz5klouwbe3b58SSNef8d34FK4BnVcStT/E6noJbkkRAY=
=qnhk
-----END PGP SIGNATURE-----


Reply to: