• [SECURITY] [DSA 5214-1] kicad security update

    From Moritz Muehlenhoff@21:1/5 to All on Sun Aug 21 20:50:01 2022
    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA512

    - ------------------------------------------------------------------------- Debian Security Advisory DSA-5214-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff August 21, 2022 https://www.debian.org/security/faq
    - -------------------------------------------------------------------------

    Package : kicad
    CVE ID : CVE-2022-23803 CVE-2022-23804 CVE-2022-23946 CVE-2022-23947

    Multiple buffer overflows were discovered in Kicad, a suite of programs
    for the creation of printed circuit boards, which could result in the
    execution of arbitrary code if malformed Gerber/Excellon files.

    For the stable distribution (bullseye), these problems have been fixed in version 5.1.9+dfsg1-1+deb11u1.

    We recommend that you upgrade your kicad packages.

    For the detailed security status of kicad please refer to
    its security tracker page at:
    https://security-tracker.debian.org/tracker/kicad

    Further information about Debian Security Advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org
    -----BEGIN PGP SIGNATURE-----

    iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmMCfI8ACgkQEMKTtsN8 Tjb1nw/+PHsTOp6CgOAAW8m2VUaBV3wtAJDPKXlhDORLkQvmI8VUU2lYzeWlz0dE ABbbIKXcAFlO4f11BY+LdsNEYkYRt46DZM76+CfuYZu4t7BiYssoK+nIc5FIq+RZ QAVt0++ViYKQpXIqncezV+g2ThgFO0oyse8lUo86TOhh06h2KGGGs1qyMv+0MDF8 eG9ywMEvM4yoIDeRKx7kyB4LVJem8boFREAzDUt04AxjNvr2UNLFjXrbrmte+Ln1 QaX2ViTUfJeWsz9qbkxjcxG+nc1JrosZG1DwilKc2/LS6MgrVOk/LTh1UGHWeXbi y2QilibPBSyPpNLud3FmXL6ClkOcYKTpDRK7F5CRZhEEE4gyTkU4WjzRKTRPShNz B00a+HgfFxy6yLsTXfg7C/Muy4p4kVLFz90p+OZj/9BvBbpMCcBLzcq2nsQXJAh3 NfslbtjjUSuRdfC7KqUHG563dHaU+bB0AP3+TvGJWm6d+u9HtDGtb6MwIIqu4ixq 9AqDo5IUcqgaK6OmoMC4e+fACUI1b5nMlk+74i8fbrPXeVtgvJVbof01xtppaKlx L6X3sUbvEyWnfH0aZgLrpZEozq2PQDqPnofXtiNrycFSBbXxGKftAN9P38/c578c O/Jr578K5pLhDj6muhjluu2TwNqrXKh3JY0lROc3VRpXSKjDLak=
    =o1il
    -----END PGP SIGNATURE-----

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)