[SECURITY] [DLA 1430-1] taglib security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 1430-1] taglib security update
From: Thorsten Alteholz <debian@alteholz.de>
Date: Wed, 18 Jul 2018 22:08:34 +0200 (CEST)
Message-id: <[🔎] alpine.DEB.2.02.1807182207390.27721@jupiter.server.alteholz.net>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : taglib
Version        : 1.9.1-2.1+deb8u1
CVE ID         : CVE-2018-11439


CVE-2018-11439
     Fix for a heap-based buffer over-read via a crafted audio file.


For Debian 8 "Jessie", these problems have been fixed in version
1.9.1-2.1+deb8u1.

We recommend that you upgrade your taglib packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)

iQJ8BAEBCgBmBQJbT55CXxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w
ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ2MjAxRkJGRkRCQkRFMDc4MjJFQUJCOTY5
NkZDQUMwRDM4N0I1ODQ3AAoJEJb8rA04e1hHJDMP/A0vk+WD8TTdWxi8rxzVj8fR
z9e7IqGECRUy79X/u7NbNrJm+6EOdwfZgSctYOFvgZROMzK6PTdBTAgJor7cp1Kl
hHmKgDls8sG72XjEJa3/6RRcM27vbqViLqi3zgELhBvEPZ7vTvKlXeNCdiPgp8aK
ee5dFDKAJJQqvFYzSF4X0Sw5qDGHYUQJFfRxl5lhlMaQMTBidgAaRR26PfkeEQ3q
djSTtIsKyH9Obpc/4Arvbh8i/ifBK/daorf8Jg86bmxWAI+xuJ000tzG9wA9FVO4
u2Er9AAt+oo3o3CjcZ4wmiGncc1AzgWVVEqA7RnJKK7Q4FnLZ+4IGB4FUCmlwXYw
9Us1f3r1JwLfQNlCJe/CvT8E7oFgTNjFCxD1uAccVNq0aNXCwXky5jTMjaIpCJXW
45qIMc5ndwQoJn5wmMiJcsciynt8XnhHclI6l6Z9IGFyQhqxStXPcidpsAW+7ATW
N9wRCnV149gg1NSvEG5s4OXGV+CfBvH9ZH7RYACUAqXCFxoDGMs2JIouLlKaSiAR
mZ+TPGwtxeZxLkF2I1FPvYPX9PF125vOSNo+8q95fnEEGGtGcU+EuaHflRC8cezc
nF8P4XCXslyG07GL1Os0u7e2pmkCsd8syghanq01INvv/b5W8rVlfTX2GwQY4Go4
mdr6NfXhZOU1JdVgjPE4
=IlOz
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 1424-1] linux-latest-4.9 new package
Next by Date: [SECURITY] [DLA 1431-1] ant security update
Previous by thread: [SECURITY] [DLA 1424-1] linux-latest-4.9 new package
Next by thread: [SECURITY] [DLA 1431-1] ant security update
Index(es):
- Date
- Thread