[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 790-1] mapserver security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : mapserver
Version        : 6.0.1-3.2+deb7u4
CVE ID         : CVE-2017-5522

It was discovered that mapserver, a CGI-based framework for Internet
map services, was vulnerable to a stack-based overflow. This issue
allowed a remote user to crash the service, or potentially execute
arbitrary code.

For Debian 7 "Wheezy", these problems have been fixed in version
6.0.1-3.2+deb7u4.

We recommend that you upgrade your mapserver packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEgYLeQXBWQI1hRlDRZ1DxCuiNSvEFAliA7XUACgkQZ1DxCuiN
SvF/5BAAmgiLaOhDznWgH0R+pujdB/Mtchix3ItNJRHe4rUFt+4Ob3gnuBAEljh+
nsAnfBgfvEsPMl4BQDV+ydSF9nJxCnNZlRWFcUB6jZNHO9CbHfYlKGrax1pxJV/n
4sS5hM2BeFYi0a2jvT3/tG8wLpH2wUs+d940Ez5LxSi4To7hLIafe6HY7lgCS1Na
HCudSPPkswUAEFRdcxvJioDqjcMLDLyuor4MDQdYPm4C8uJY8hrzOUdQCXdXtvaK
5ZH2eGzNYrKPjyIE5NS8kMF4prR0/0ha+9aWPmfXFMuvRHhsD58h+iOtmf18Z9xU
IciSbFx3oms6VoBf9T/bBvJ1dZmv6LAklzrFEkShh1dLOQZipX2thU4JfVfI1GO3
9dddCm3WMI4Rj4iK1hdbFU4Qz6ZKrDVznGnJ+Fbd5sCA7Pui8Re4HhtV2a6R2woE
WUEo8v20kdFi2LDsK3/EHncobhJyqlzjAm3xc79h9Aw7PNI2z5OM6+Yjb05oSFmw
IHgizBFw0noDcpRdTLr0b4X7hmhgLBp4NlQLRO5hfxd//4ITzTcVwsSgCMAlUm66
tBEJbbVrx5FTOY+i4PYBJ6a7tRHcue0b9vFr7WlV1jGSwZXh2rbsB+NyYMsAgYX1
mA3ce5QZ7Mp5/EcQnjuy0hkI+xSDu0P6Ej2O9XSwe5skx8Qfj+0=
=0m1D
-----END PGP SIGNATURE-----


Reply to: