[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DSA 5214-1] kicad security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5214-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
August 21, 2022                       https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : kicad
CVE ID         : CVE-2022-23803 CVE-2022-23804 CVE-2022-23946 CVE-2022-23947

Multiple buffer overflows were discovered in Kicad, a suite of programs
for the creation of printed circuit boards, which could result in the
execution of arbitrary code if malformed Gerber/Excellon files.

For the stable distribution (bullseye), these problems have been fixed in
version 5.1.9+dfsg1-1+deb11u1.

We recommend that you upgrade your kicad packages.

For the detailed security status of kicad please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/kicad

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=o1il
-----END PGP SIGNATURE-----


Reply to: