unsubscribe
*Alexandre Clain* Gestion de projet | Analyste programmeur +33 (0)6 30 11 26 37 | http://alexandre.clain.info Twitter : twitter.com/alexandreclain | Facebook : facebook.com/aclain 2015-09-10 10:37 GMT+02:00 Alessandro Ghedini <[email protected]>: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA512 > > - ------------------------------------------------------------------------- > Debian Security Advisory DSA-3355-1 [email protected] > https://www.debian.org/security/ Alessandro Ghedini > September 10, 2015 https://www.debian.org/security/faq > - ------------------------------------------------------------------------- > > Package : libvdpau > CVE ID : CVE-2015-5198 CVE-2015-5199 CVE-2015-5200 > Debian Bug : 797895 > > Florian Weimer of Red Hat Product Security discovered that libvdpau, the > VDPAU wrapper library, did not properly validate environment variables, > allowing local attackers to gain additional privileges. > > For the oldstable distribution (wheezy), these problems have been fixed > in version 0.4.1-7+deb7u1. > > For the stable distribution (jessie), these problems have been fixed in > version 0.8-3+deb8u1. > > For the testing distribution (stretch), these problems have been fixed > in version 1.1.1-1. > > For the unstable distribution (sid), these problems have been fixed in > version 1.1.1-1. > > We recommend that you upgrade your libvdpau packages. > > Further information about Debian Security Advisories, how to apply > these updates to your system and frequently asked questions can be > found at: https://www.debian.org/security/ > > Mailing list: [email protected] > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1 > > iQIcBAEBCgAGBQJV8UE8AAoJEK+lG9bN5XPLd6YP/R1bGtDqgFix0QlePO4zBfNU > uWkPYYlQNihDd+0m2DnOvKD9m934aeArwoj4hDcu8lwxkX+3TGeFbiHM6fo+kz2P > zVZmBt3K11TUzJ9hQcJNpw0E7JpYfBeBFVTMiFwE1An2JG+GDGwlOY9jq69/n++r > +lk2unQ9e4SF2nynSDfuakU95RpcYBaSUgOjttQrOlh5wQJVldRhyltUBfNcinD6 > PlIEF9Hr0PVboFfL6q5W+hGPDElGQAYRn6M2ISz/en3/IADe3r7uJlLwLGcahr5J > I3dejzgGif2eSigidkagsUuevwbotznDcBo58xRMc3R/a7QYI6fVEwaK3s3xCC/V > 5wv0aABatKaXO8T/95yKXGJ5O12zqlzIhiup3vWENhh1hqwKy6Tv44Zl21YzigdR > qfloo5poqKhK3vXQVgeaANy6sjTVGFzWQX5Tk1TTDB1Oh4iFMqFBBj0qXYnT9nEt > 6n5X4FX/oRAnBmhhsp9YLVZwpZ3QofUE1m33vuMKkjLCAXveXrvdapBqDtnXhXsA > ov49RIilPH2xDG4OSWquJG2Ua4nMKPVhZ/St2wQJ5SP2nVZ6fmKv2Mq3IgHjCcMY > a/TALnJgn+l/GKE7hm0PlJ+jwMLobtO4uJotoeMgpsZJT9qyVCg5Y50R+fYKe1+2 > uGCGEq0U8v5y7asmernY > =YTzO > -----END PGP SIGNATURE----- > >
