[SECURITY] [DLA 980-1] ming security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 980-1] ming security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Tue, 6 Jun 2017 20:43:47 +0200
Message-id: <[🔎] 93cc841d-457b-9534-b422-2c4f9d3b6fc5@debian.org>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : ming
Version        : 1:0.4.4-1.1+deb7u3
CVE ID         : CVE-2017-8782

It was found that ming, a library to parse and generate SWF (Flash)
files, is susceptible to an integer overflow that would lead into
out of bound memory writes via a maliciously crafted file.

For Debian 7 "Wheezy", these problems have been fixed in version
1:0.4.4-1.1+deb7u3.

We recommend that you upgrade your ming packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=1dMG
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 978-1] perl security update
Next by Date: [SECURITY] [DLA 981-1] apng2gif security update
Previous by thread: [SECURITY] [DLA 978-1] perl security update
Next by thread: [SECURITY] [DLA 981-1] apng2gif security update
Index(es):
- Date
- Thread