it-securitynotifies AT lists.piratenpartei.de
Betreff: Sicherheitsankündigungen
Listenarchiv
- From: Salvatore Bonaccorso <carnil AT debian.org>
- To: debian-security-announce AT lists.debian.org
- Subject: [IT-SecNots] [SECURITY] [DSA 5200-1] libtirpc security update
- Date: Sun, 07 Aug 2022 08:56:53 +0000
- Authentication-results: mail.piratenpartei.de; dkim=none; dmarc=none; spf=none (mail.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 2001:41b8:202:deb:216:36ff:fe40:4002) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"
- List-archive: https://lists.debian.org/msgid-search/E1oKc5d-00013j-JN AT seger.debian.org
- List-id: <debian-security-announce.lists.debian.org>
- List-url: <http://lists.debian.org/debian-security-announce/>
- Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Date:Message-Id:Subject:To:From:Reply-To:Cc:MIME-Version :Content-Type:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=tTGe2nBeHqvOlIXbqYroPAivY4OZNV7us0+RxgGvkA4=; b=RC 9IhK9tdRqGPXZaYYy0zMeLEMlRbKKaTgz1A1sSuesesa1f9Mt7DrJiCCaqC1pVkrAdG8C+O0k3Z9M X0WAFH3mKfNumDP5oXxfZwRe+7X95993CRpvqHfd07APn31SOD26ey/FOD3FNtaFDFGquEOZmSC0s JDFe3x6NyRgW0vi9ll5bNpsrJMvH16XOVaALRu4khcNt3Vysm4f/7S1NhdRYA9BlZAXT49gy35lav lK4P+wCkpxJ/uWnxexGAvGrE74jqRiEuFIKd3hKHV/+Q4oVRWisvBw/4sqG3b/rx1dKDMHLo32rJK zEzYkSyGc/W1tmnBlakZq9e1rZnTQvJQ==;
- Old-return-path: <carnil AT seger.debian.org>
- Priority: urgent
- Resent-date: Sun, 7 Aug 2022 08:57:11 +0000 (UTC)
- Resent-from: debian-security-announce AT lists.debian.org
- Resent-message-id: <cXKH5oqJAiM.A.RAD.m537iB@bendel>
- Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-5200-1 security AT debian.org
https://www.debian.org/security/ Salvatore Bonaccorso
August 07, 2022 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : libtirpc
CVE ID : CVE-2021-46828
Debian Bug : 1015873
It was discovered that libtirpc, a transport-independent RPC library,
does not properly handle idle TCP connections. A remote attacker can
take advantage of this flaw to cause a denial of service.
For the stable distribution (bullseye), this problem has been fixed in
version 1.3.1-1+deb11u1.
We recommend that you upgrade your libtirpc packages.
For the detailed security status of libtirpc please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libtirpc
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----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=ztqU
-----END PGP SIGNATURE-----
- [IT-SecNots] [SECURITY] [DSA 5200-1] libtirpc security update, Salvatore Bonaccorso, 07.08.2022
Archiv bereitgestellt durch MHonArc 2.6.24.