[SECURITY] [DLA 935-1] lxterminal security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 935-1] lxterminal security update
From: Chris Lamb <lamby@debian.org>
Date: Wed, 10 May 2017 09:21:00 +0100
Message-id: <[🔎] 1494404460.2143662.971755512.2BB5933E@webmail.messagingengine.com>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : lxterminal
Version        : 0.1.11-4+deb7u1
CVE ID         : CVE-2016-10369
Debian Bug     : #862098

It was discovered that there was a local denial of service vulnerability in
lxterminal, the terminal emulator for the LXDE desktop environment.

This was caused by an insecure use of temporary files for a socket file.

For Debian 7 "Wheezy", this issue has been fixed in lxterminal version
0.1.11-4+deb7u1.

We recommend that you upgrade your lxterminal packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlkSzWIACgkQHpU+J9Qx
HlhhzBAAv58HOq3JgqR6XNLfEc+CKBYGshQcfvCLEUocsMEhxgX9Fxb5LZyFhFFM
IYlRY5IOTD+dyc1tyctocl8RJrpb0RhPRSGVfch5kbWG+BH1LrmU8KEo3urIZDYs
JgNjf9HQY3eNf5ypxDq+jVRmVL8v19i75b+ibeHd8kZQFfK0+J9CjK174CGGcFNd
RREX73nTr7LRHyzWl57fG+ctNaxUyL0iXNVit/uuPnRWe5albL38juI6ogJiLE/P
3bdHLdwgky66SiQ9pdP10iq/MLOBEX8LD4vvH02C/OxHWvRM0cI0O9gXQVHIBVw2
4WfJqKbY+temtW/VuEKXra1vB68LyRe6Fsf2jQoX2A2e6cfXQnehVYThyv/7kcha
G4QfzLgP3OHZE4evYsJuxWVZHb7xjaaQn7lbYd67t9hvj/tKWOph5iCCuLKM/EiP
Sx+T7PUKY2wztnD0UxPQ78eoq/7CsxKr4AvULFVb30GH20BXjcFF19jQ+FFX5771
ZWcevZfHrVeTrEHEwMIctYLT0Hrx1lvsVvmrAY0LyAi6vyVqEUtu03b5BWuUNmfX
mhNgyqCRD0RqkhPm8HMZnKRbPqB4b91mTcabAA0paZebe4OkevFSl123Sxb4VAf0
orMVRQFUSm9T/rbYFco0BHUOS4qzJaryv8kaU4mlr4zvd99LBV0=
=4OO4
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 934-1] radicale security update
Next by Date: [SECURITY] [DLA 936-1] libtirpc security update
Previous by thread: [SECURITY] [DLA 934-1] radicale security update
Next by thread: [SECURITY] [DLA 936-1] libtirpc security update
Index(es):
- Date
- Thread