[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1209-1] sensible-utils security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : sensible-utils
Version        : 0.0.7+deb7u1
CVE ID         : CVE-2017-17512
Debian Bug     : #881767

It was discovered that there was a vulnerability in sensible-browser, a
utility to start the most suitable web browser based on your environment
or configuration.

Remote attackers could conduct argument-injection attacks via specially-
crafted URIs.

For Debian 7 "Wheezy", this issue has been fixed in sensible-utils version
0.0.7+deb7u1.

We recommend that you upgrade your sensible-utils packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=DLmJ
-----END PGP SIGNATURE-----
Reply to: