Univention Bugzilla – Bug 55327
libksba: Multiple issues (5.0)
Last modified: 2022-10-20 13:41:19 CEST
New Debian libksba 1.3.5-2+deb10u1 fixes: This update addresses the following issue: * libksba (CVE-2022-3515)
--- mirror/ftp/pool/main/libk/libksba/libksba_1.3.5-2.dsc +++ apt/ucs_5.0-0-errata5.0-2/source/libksba_1.3.5-2+deb10u1.dsc @@ -1,3 +1,11 @@ +1.3.5-2+deb10u1 [Mon, 17 Oct 2022 22:31:58 +0200] Markus Koschany <apo@debian.org>: + + * Non-maintainer upload by the LTS team. + * Fix CVE-2022-3515: + An integer overflow flaw was discovered in the CRL parser in libksba, an + X.509 and CMS support library, which could result in denial of service or + the execution of arbitrary code. + 1.3.5-2 [Sat, 03 Sep 2016 15:22:31 +0200] Andreas Metzler <ametzler@debian.org>: * Upload to unstable. <http://piuparts.knut.univention.de/5.0-2/#7211169090070130672>
OK: yaml OK: announce_errata OK: patch OK: piuparts
<https://errata.software-univention.de/#/?erratum=5.0x464>