[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 2401-1] sympa security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2401-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/                                     
October 07, 2020                              https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : sympa
Version        : 6.2.16~dfsg-3+deb9u3
CVE ID         : CVE-2020-10936
Debian Bug     : 961491

Sympa, a modern mailing list manager, allows privilege escalation
through setuid wrappers. A local attacker can obtain root access.

For Debian 9 stretch, this problem has been fixed in version
6.2.16~dfsg-3+deb9u3.

We recommend that you upgrade your sympa packages.

For the detailed security status of sympa please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/sympa

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCgAdFiEEQic8GuN/xDR88HkSj/HLbo2JBZ8FAl9+LF4ACgkQj/HLbo2J
BZ9ymQgApde1dAsEORf2VntldXLkuRgzf7ti1WJrouMm1ra6llvKMY4KZFUDcplo
zSoqWvvn2hYjQ06L1bB1pxqSG8nTdllTijuLWt9sJTw3FZhY6hWS+b/IcIcUc9HB
IYoAafQu286dbBNAMLMwzwAyA4X/XmRrJaFm2tIjI56fVZ5cx9Y8ST4uc6r4qDCR
UasJ838Ej297vR3Vlgww44QGgOwFBCimXOSXNZN8toQRN5l/gmgNT5tsfmgn74+d
bHuvldPckJYH3IK7FUDHQdXkM5H0auNrduwxasejRDNQqYtOl3KpQOIEZjgbzOaL
MQQ1MiJwdEp/miMZjyLVQJcLlXPHVg==
=Zkth
-----END PGP SIGNATURE-----


Reply to: