-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3615-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz October 12, 2023 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : libcue Version : 2.2.1-2+deb10u1 CVE ID : CVE-2023-43641 Kevin Backhouse discovered an out-of-bounds array access in Libcue, a library for parsing CD metadata, which could result in the execution of arbitrary code. For Debian 10 buster, this problem has been fixed in version 2.2.1-2+deb10u1. We recommend that you upgrade your libcue packages. For the detailed security status of libcue please refer to its security tracker page at: https://security-tracker.debian.org/tracker/libcue Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEEYgH7/9u94Hgi6ruWlvysDTh7WEcFAmUnHjdfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDYy MDFGQkZGREJCREUwNzgyMkVBQkI5Njk2RkNBQzBEMzg3QjU4NDcACgkQlvysDTh7 WEfPjw/+JDQ+/7RjVoamwPggiS7FfhJPdR8LAFamZN5f5FZbL/3PT8YrN5AC962g qF7pSbKle7bR7NqWsQKEwYyY7jrHNf/WtaqcsHDsy72woetdSwhJz8pAkgSAQkqo 9AKZod6QBi+LxKyogrcDFxwjg+DbGgaSBqpJGy/lVMQwiwDjjKGDbVc/T2tQNNUX 92u6ztcxZoHktXcbnHU8bGhw/IiOm1xSgh19QYKf/JGLC/MPGUQYBBrA3XkkoTEq ahzTXENvAW8ett0+M0qrb2pMIFhnDa9Iuo7mDVxXVNDiIBSo1c5J5iOnuIpvBhWy RFNHF6AjHBzcPr0va+LQwsPSEUS/D28pP6xCm6jN8PpCzwGyojivmbTctzqcvj85 gz47iDKe7ckA8H8I74n1yD46DJBK16+T8MZDQzseRpO/v7stZeWawbKD34wF0E2g F4tgu4zc2HeSI4KQcGEYoZHBeGEpL5F4sWqqLNDltRfNUxphIcgY4tcZNdCvUwsX 1pTjMOxMv308ezwguHU4DzRNzuD1VlPpGr+wDE94Y4Xfv6xgrlZGpNdGEkObbcLK qVXGGr7HkSX6pMV1kdppVDjemksrEeHFjkMbjR8xJ9osG2jGtDf/Gqq2qpdP+kbo GAI0SYP4qBPheesOwC0vgphr/eWN5G0gptBJcmvruwJ1FFsfSeo= =Pmbz -----END PGP SIGNATURE-----
