Security Information / 2021 / Security Information -- DSA-4948-1 aspell

Debian Security Advisory

DSA-4948-1 aspell -- security update

Date Reported:

01 Aug 2021

Affected Packages:

aspell

Vulnerable:

Yes

Security database references:

In the Debian bugtracking system: Bug 991307.
In Mitre's CVE dictionary: CVE-2019-17544, CVE-2019-25051.

More information:

A buffer overflow was discovered in the Aspell spell checker, which could result in the execution of arbitrary code.

For the stable distribution (buster), these problems have been fixed in version 0.60.7~20110707-6+deb10u1.

We recommend that you upgrade your aspell packages.

For the detailed security status of aspell please refer to its security tracker page at: https://security-tracker.debian.org/tracker/aspell