[SECURITY] [BUGFIX] [DLA 2703-1] ieee-data crash fix

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [BUGFIX] [DLA 2703-1] ieee-data crash fix
From: Utkarsh Gupta <utkarsh@debian.org>
Date: Sun, 4 Jul 2021 17:53:33 +0530
Message-id: <[🔎] CAPP0f94sCChk=sP61bF6pBcqXz9729wbthfxzscg5oPXqBJDFg@mail.gmail.com>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -----------------------------------------------------------------------
Debian LTS Advisory DLA-2703-1              debian-lts@lists.debian.org
https://www.debian.org/lts/security/                      Utkarsh Gupta
July 04, 2021                               https://wiki.debian.org/LTS
- -----------------------------------------------------------------------

Package        : ieee-data
Version        : 20160613.1+deb9u1
Debian Bug     : 908623 932711

The ieee-data package, which provides the OUI and IAB listings of
identifiers assigned by IEEE Standards Association, ships a script
(update-ieee-data) which queries ieee.org to download the most recent
dataset and save it to /var/lib/ieee-data/.

This script broke for stretch at the end of 2018 when the URL changed.

For Debian 9 stretch, this problem has been fixed in version
20160613.1+deb9u1.

We recommend that you upgrade your ieee-data packages.

For the detailed security status of ieee-data please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/ieee-data

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEbJ0QSEqa5Mw4X3xxgj6WdgbDS5YFAmDhp98ACgkQgj6WdgbD
S5ZHiQ/+I8lKushy+zW/+lNCInjB3nD6XZkqg+weYWoepvGXmftm2XD359j04BHA
DsDyHTzU6juHeerr4qkE9jMvJGTLgGjzK079HvF0tQYzBktlXv91Vpk5tINtex7y
J7mkKJK9nHegmwQPpBL6eIAS8++E/43jIoSob1hbHPDYmx0wgXRGD5BXtkZZSTzx
gNTvHXDw1JGP2/XSya3D49Sl2U2Sj24vBMS5MoFLw8ZgjioKcClp3J1OCGBSsMye
52sJ519M2VmKXaE2Eck95gE5NEd4Mo+h9Ka/rKAjEa2CCigHIFe06IgiPHVUq+Db
9+oCCEV4jdS3+AR2/vEZII/4+LogNqILKJ2innKTWi3HZmAUApJFygEa2iWVJLjl
DPXvpBn2rXnFn53TS/KPxV73fnolpRu9b6oqjVKmPARwSOulOTFtAb/2lh2VtU4G
5qDKotirHHh4PX6xy+U2gT7ng+2XXR1bPnmCZoVx8z1B2s865pb+ICsdE+1sZnr/
yhY5RQgwt2MWWzbKvrUGGJ3AzRvClK5P7n2D32ektUaBJKboYkUghY18HZiVsoTq
2jLE0we5F9WpEWCp7kcgDXalhUneg6j2Jl5wG7EcmqOZK8yXPL3r+UHemsNkBsv4
VBNSWHTGQI5ITKqJxUM+yA9AnlZW3O9swkPZDZ78Eym7xMeWJdE=
=JqjL
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 2702-1] djvulibre security update
Next by Date: [SECURITY] [DLA 2704-1] libxstream-java security update
Previous by thread: [SECURITY] [DLA 2702-1] djvulibre security update
Next by thread: [SECURITY] [DLA 2704-1] libxstream-java security update
Index(es):
- Date
- Thread