it-securitynotifies AT lists.piratenpartei.de
Betreff: Sicherheitsankündigungen
Listenarchiv
- From: Moritz Muehlenhoff <jmm AT debian.org>
- To: debian-security-announce AT lists.debian.org
- Subject: [IT-SecNots] [SECURITY] [DSA 5945-1] konsole security update
- Date: Fri, 20 Jun 2025 19:41:49 +0000
- Authentication-results: lists.piratenpartei.de; dkim=none; spf=none (lists.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 82.195.75.100) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
- List-archive: https://lists.debian.org/msgid-search/aFW5fV3V3sSz0N2S AT seger.debian.org
- List-id: <debian-security-announce.lists.debian.org>
- List-url: <http://lists.debian.org/debian-security-announce/>
- Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=w9bn5PECdO72EGZeQ0Mki/cppaieZBn/FP+eeD1zQEE=; b=ei ce+Y982yaSKG4f4qs0O7VknHQfeTbhb+Ys9hHUpWAlCQjN+IjMauZoVbHeiTFuqWoxluEZxU0v0CU Z910RFYnKamHG5xoCewtFaVE8901qYR+I3aYvVBhQE0cGwtQ6647rhMdwJ1QNMk0GYqTiatwHvS9h /cUBP6WryiALgo5f0mgc+wd6BFcu62koe/gACZtHfopi96GG1vAPmJeizRrqjya0MId4KSpKrDSa5 2xGB5CAd53nmJmaN3OFGCXoTS86+bm6ID7vxFFRZ0QOykA2uGNy+4bDnfH5++NHoLMlSZ7kgPOaqS s9qn/vYKXfDaP6PJgsc6+4i05h72guRg==;
- Old-return-path: <jmm AT seger.debian.org>
- Priority: urgent
- Resent-date: Fri, 20 Jun 2025 19:42:12 +0000 (UTC)
- Resent-from: debian-security-announce AT lists.debian.org
- Resent-message-id: <L01Jw4ZEIXK.A.XEmL.UmbVoB@bendel>
- Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-5945-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
June 20, 2025 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : konsole
CVE ID : CVE-2025-49091
Dennis Dast discovered that the Konsole terminal emulator insecurely
handled the telnet URI scheme, which could result in the execution
of arbitrary code in some configurations.
For the stable distribution (bookworm), this problem has been fixed in
version 4:22.12.3-1+deb12u1.
We recommend that you upgrade your konsole packages.
For the detailed security status of konsole please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/konsole
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----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=FPY9
-----END PGP SIGNATURE-----
- [IT-SecNots] [SECURITY] [DSA 5945-1] konsole security update, Moritz Muehlenhoff, 20.06.2025
Archiv bereitgestellt durch MHonArc 2.6.19+.