[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 2357-1] ros-actionlib security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2357-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                                     
August 30, 2020                               https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : ros-actionlib
Version        : 1.11.7-1+deb9u1
CVE ID         : CVE-2020-10289
Debian Bug     : 

Use of unsafe yaml load was fixed in ros-actionlib,
the Robot OS actionlib library.

For Debian 9 stretch, this problem has been fixed in version
1.11.7-1+deb9u1.

We recommend that you upgrade your ros-actionlib packages.

For the detailed security status of ros-actionlib please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/ros-actionlib

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=pslw
-----END PGP SIGNATURE-----


Reply to: