[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 2958-1] usbredir security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -----------------------------------------------------------------------
Debian LTS Advisory DLA-2958-1              debian-lts@lists.debian.org
https://www.debian.org/lts/security/                      Utkarsh Gupta
March 21, 2022                              https://wiki.debian.org/LTS
- -----------------------------------------------------------------------

Package        : usbredir
Version        : 0.7.1-1+deb9u1
CVE ID         : CVE-2021-3700

A use-after-free vulnerability was found in Usbredirparser, a parser
for the usbredir protocol, which could result in denial of service or
potentially arbitrary code execution.

For Debian 9 stretch, this problem has been fixed in version
0.7.1-1+deb9u1.

We recommend that you upgrade your usbredir packages.

For the detailed security status of usbredir please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/usbredir

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=fvgv
-----END PGP SIGNATURE-----


Reply to: