Univention Bugzilla – Bug 49893
zeromq3: Multiple issues (4.3)
Last modified: 2019-07-24 16:01:01 CEST
New Debian zeromq3 4.2.1-4+deb9u2 fixes: This update addresses the following issue: * stack-overflow on any server protected by encryption/authentication (CVE-2019-13132)
--- mirror/ftp/4.3/unmaintained/4.3-4/source/zeromq3_4.2.1-4+deb9u1.dsc +++ apt/ucs_4.3-0-errata4.3-4/source/zeromq3_4.2.1-4+deb9u2.dsc @@ -1,3 +1,9 @@ +4.2.1-4+deb9u2 [Sat, 06 Jul 2019 14:19:32 +0000] Laszlo Boszormenyi (GCS) <gcs@debian.org>: + + [ Luca Boccassi <bluca@debian.org> ] + * Fix CVE-2019-13132: application metadata not parsed correctly when using + CURVE. + 4.2.1-4+deb9u1 [Sun, 13 Jan 2019 18:02:22 +0100] Moritz Mühlenhoff <jmm@debian.org>: * CVE-2019-6250 (Closes: #919098) <http://10.200.17.11/4.3-4/#8175432724600880169>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.3-4] 0d77138969 Bug #49893: zeromq3 4.2.1-4+deb9u2 doc/errata/staging/zeromq3.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) [4.3-4] c019a6a562 Bug #49893: zeromq3 4.2.1-4+deb9u2 doc/errata/staging/zeromq3.yaml | 13 +++++++++++++ 1 file changed, 13 insertions(+)
<http://errata.software-univention.de/ucs/4.3/550.html>