1. Forum
  2. Usenet
  3. LINUX.DEBIAN.ANNOUNCE.SEC

  • [SECURITY] [DSA 4913-1] hivex security update

    From Moritz Muehlenhoff@21:1/5 to All on Mon May 10 21:00:01 2021
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-4913-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff
    May 10, 2021 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : hivex
    CVE ID : CVE-2021-3504
    Debian Bug : 988024

    Jemery Galindo discovered an out-of-bounds memory access in Hivex, a
    library to parse Windows Registry hive files.

    For the stable distribution (buster), this problem has been fixed in
    version 1.3.18-1+deb10u1.

    We recommend that you upgrade your hivex packages.

    For the detailed security status of hivex please refer to
    its security tracker page at:
    https://security-tracker.debian.org/tracker/hivex

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org
    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmCZgWcACgkQEMKTtsN8 TjbspQ/9HW9L+0iWMZaHrY1M/5eESsKIOtCj/b1YqXDAcvpj1pF9SlHoWQMwdDht i6HDRiEbyYSOacASAq1aS88ynh5LYyYRcXNBOIqGY/n0EYu8+4GMxvqsCBc/057o kjMmTdzr5xRa1gL1EER+PwZ/kF7kFY7kReg1zgBT4ZSjlbEeZm1dGF1TAHwfVLQ+ jp7EPUIvCzJF4wmvUTrFOxZPbaoYckFwNfcPxetArc3JgZWlPl3MZtJzUTyis/Nf PZCuc7Qo2aVScPsGQHym4efB/WB7eJ6CP3qmgtV9kRrkmQXWNPVtwfXk/EKPtdCc rxP/Fvv3I2JpPUMaM8n/O8HSXq2qPK0DpF6YcP0Fgcbis/6wrNHo5ZeEautLyFzq Dne1GL2pqfh2xO14iMGPkkG99v39p0rEr7hgknkleIQt1NBaRSZqGm7SmF1BXmyj O0+Jcnx6A80MrqpA9GMvPAITGunD/rpHhkSgxxpQeUnsflIeoCS5WMvFbwZ0xVwB gqbOROe1UuyT4kBxawVAR9u0UhzpKeV4vXrZCNRAVq63CBUX+2QEvRGMDSmecM3J QLThqTH1DGFinPXIa8DwWDKNdv7w1rnocJ2dseSI0sra0LsK9L8vDsjbgpFuOOe3 WRUt/X+Oj/5knMUSM0CnDiZH92PhrhGisk5DoRSPnu9aTEKf3cI=
    =0RQ5
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)