24 Aoû
2017
24 Aoû
'17
01:38
apticron report [Thu, 24 Aug 2017 01:38:18 +0200]
========================================================================
apticron has detected that some packages need upgrading on:
quigon.federez.net
[ 160.228.155.65 ]
The following packages are currently pending an upgrade:
augeas-lenses 1.8.0-1+deb9u1
libaugeas0 1.8.0-1+deb9u1
libxml2 2.9.4+dfsg1-2.2+deb9u1
========================================================================
Package Details:
apt-listchanges : Lecture des fichiers de modifications (« changelog »)...
apt-listchanges : journaux des modifications (« changelogs »)
-------------------------------------------------------------
--- Modifications pour augeas (augeas-lenses libaugeas0) ---
augeas (1.8.0-1+deb9u1) stretch-security; urgency=high
* Add patch to fix CVE-2017-7555 (Closes: #872400)
-- Hilko Bengen <bengen(a)debian.org> Fri, 18 Aug 2017 07:56:15 +0200
--- Modifications pour libxml2 ---
libxml2 (2.9.4+dfsg1-2.2+deb9u1) stretch-security; urgency=high
* Non-maintainer upload by the Security Team.
* Increase buffer space for port in HTTP redirect support (CVE-2017-7376)
Incorrect limit was used for port values. (Closes: #870865)
* Prevent unwanted external entity reference (CVE-2017-7375)
Missing validation for external entities in xmlParsePEReference.
(Closes: #870867)
* Fix handling of parameter-entity references (CVE-2017-9049, CVE-2017-9050)
- Heap-based buffer over-read in function xmlDictComputeFastKey
(CVE-2017-9049).
- Heap-based buffer over-read in function xmlDictAddString
(CVE-2017-9050).
(Closes: #863019, #863018)
* Fix buffer size checks in xmlSnprintfElementContent (CVE-2017-9047,
CVE-2017-9048)
- Buffer overflow in function xmlSnprintfElementContent (CVE-2017-9047).
- Stack-based buffer overflow in function xmlSnprintfElementContent
(CVE-2017-9048).
(Closes: #863022, #863021)
* Fix type confusion in xmlValidateOneNamespace (CVE-2017-0663)
Heap buffer overflow in xmlAddID. (Closes: #870870)
-- Salvatore Bonaccorso <carnil(a)debian.org> Sat, 19 Aug 2017 17:36:49 +0200
========================================================================
You can perform the upgrade by issuing the command:
apt-get dist-upgrade
as root on quigon.federez.net
--
apticron
Afficher les réponses par date
2801
jours sans activité
2801
depuis la dernière activité
0 commentaires
1 participants
participants (1)
-
root@quigon.federez.net