-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Package : hylafax Version : 3:6.0.6-6+deb8u1 CVE ID : CVE-2018-17141
Luis Merino, Markus Vervier and Eric Sesterhenn discovered that missing input sanitising in the Hylafax fax software could potentially result in the execution of arbitrary code via a malformed fax message. For Debian 8 "Jessie", this problem has been fixed in version 3:6.0.6-6+deb8u1. We recommend that you upgrade your hylafax packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQJ8BAEBCgBmBQJbprC3XxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ2MjAxRkJGRkRCQkRFMDc4MjJFQUJCOTY5 NkZDQUMwRDM4N0I1ODQ3AAoJEJb8rA04e1hHf5sP/2JwRV24h2dM4j3nmz2vNUej Mh1ahnlzWLNyIdeI+mV/vpOj9+0WLcuTTnDHrnqq36n+evu8Q71K5Af5bEv4MH+D TXDOk0xRjb/cXg3/32LbDGDU46INB8dFSEJW5aeZkcOtD6VEKHPlRvL4V9Nu9RnP dC892oh0TyTR56850czD3530pMvwYhEBd5kWIZinTTswq/mZVdffrdsY4XLvgh41 H5HizWPIqegBxW6BIMFsd9wXmXG4tfEe7Z4eUp2ADG3tBIXezQnA+NUfIr1+0erl bG+JjARpD443um0JXETIr6ZuQf7Dxqyrcr3SMw2VobXPQujRosOEvPtyf3afqcAA H5O+8fiLU7kN9FCcW/Zrgpyo0y56ndnSg36MExWosF+KNeH7KwnB0QjFGrpAegwQ H5hftYRLGnMURDSYkiFACyXI2ESjXyXjpi8w//AgakstcFaGsoBgypnMkwIvzMhD RHXVVlXp9Z+P8QHCptAF5AC6t8PfzEjyEy9fO272fdlEf/8V3pa0RznNafmNqxTm Fk1PLKH1lAzeMDdh6saG6azNkhx6FiE8QxlR70mGYrTzkkRiXgm/ebJiYpNvcCqO REdyvXAgbLfKNRwxXkJaS/B84pqE13UaL6UphWT05aRhNRcrTR4PkEsXiB8i9xuU WxfJC69YfBGhXy3/269r =9kEG -----END PGP SIGNATURE-----
