[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1445-2] busybox regression update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : busybox
Version        : 1:1.22.0-9+deb8u3

The security update of busybox announced as DLA-1445-1 introduced a
regression due to an incomplete fix for CVE-2015-9261. It was no
longer possible to decompress gzip archives which exceeded a certain
file size.

For Debian 8 "Jessie", this problem has been fixed in version
1:1.22.0-9+deb8u3.

We recommend that you upgrade your busybox packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=4PQW
-----END PGP SIGNATURE-----


Reply to: