-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2401-1 [email protected] https://www.debian.org/lts/security/ October 07, 2020 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : sympa Version : 6.2.16~dfsg-3+deb9u3 CVE ID : CVE-2020-10936 Debian Bug : 961491 Sympa, a modern mailing list manager, allows privilege escalation through setuid wrappers. A local attacker can obtain root access. For Debian 9 stretch, this problem has been fixed in version 6.2.16~dfsg-3+deb9u3. We recommend that you upgrade your sympa packages. For the detailed security status of sympa please refer to its security tracker page at: https://security-tracker.debian.org/tracker/sympa Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQEzBAEBCgAdFiEEQic8GuN/xDR88HkSj/HLbo2JBZ8FAl9+LF4ACgkQj/HLbo2J BZ9ymQgApde1dAsEORf2VntldXLkuRgzf7ti1WJrouMm1ra6llvKMY4KZFUDcplo zSoqWvvn2hYjQ06L1bB1pxqSG8nTdllTijuLWt9sJTw3FZhY6hWS+b/IcIcUc9HB IYoAafQu286dbBNAMLMwzwAyA4X/XmRrJaFm2tIjI56fVZ5cx9Y8ST4uc6r4qDCR UasJ838Ej297vR3Vlgww44QGgOwFBCimXOSXNZN8toQRN5l/gmgNT5tsfmgn74+d bHuvldPckJYH3IK7FUDHQdXkM5H0auNrduwxasejRDNQqYtOl3KpQOIEZjgbzOaL MQQ1MiJwdEp/miMZjyLVQJcLlXPHVg== =Zkth -----END PGP SIGNATURE-----
