-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3593-1 debian-...@lists.debian.org https://www.debian.org/lts/security/ Adrian Bunk September 30, 2023 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : gerbv Version : 2.7.0-1+deb10u3 CVE ID : CVE-2021-40393 CVE-2021-40394 CVE-2023-4508 Debian Bug : 1050560 Several vulnerabilities were fixed in gerbv, a viewer for the Gerber format for printed circuit board (PCB) design. CVE-2021-40393 RS-274X format aperture macro variables out-of-bounds write CVE-2021-40394 RS-274X aperture macro outline primitive integer overflow CVE-2023-4508 Out-of-bounds memory access when referencing external files For Debian 10 buster, these problems have been fixed in version 2.7.0-1+deb10u3. We recommend that you upgrade your gerbv packages. For the detailed security status of gerbv please refer to its security tracker page at: https://security-tracker.debian.org/tracker/gerbv Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEOvp1f6xuoR0v9F3wiNJCh6LYmLEFAmUYLdkACgkQiNJCh6LY mLEQTw/+OU03D+zLa18vxE9nniphfE9ZU9vKBuS6OykOwF13U4gN8TQJr7uDUe9U zL57Tb6KsnVWDR0cCCaHiAMlIWYK4zAbTeJfTaZ6w7UzVwj6R0bmuG/jfpCB5Q0o 0BiRukZSo5RVZXuStHZoo7b7kfhzkVcN8muBiQssWEIL2KGKMd7gwcULTWRkiWUS ztov1wJIuvgd6o75zARUyE2fepykIqluocG+Nvri0rPjO/xdOqLjfJscYJzLKQvJ 7tuM04V39FRGUplL5GOiM3cN5UVfaYQjm7pPYYIZPG2jZJsbVu9eF4sPpbt/5AhB +95XWNi91M+ZBDuLB1g4qLuoD4CQyVICjdXRSErEH6SyktBuoqkIAJ+GMjcVN4eP Gy7nSZ/d5VIf8Um4G+fSBgzUlRrWaS2Mkq88Y7SlFwsBn6C7xJp63Qab0jrGylxy 68Blcl0UtBVZb5SBzQXmVilX0q+cjqoeyP5TcWku0+jlls6s4k7LiBCRkR9V/3ub 4LTwZCZvGdhmtOQGUcYz4nbRa29w6gw684n5QJLiEmqTxy5HLNTuSQmHIwm82cQs okgOWptJ2RipJDMXJrJljIBzardT2BDR2CUrqUA4ZcrPj8OiSAzUHz/UhOfyo7oi 9fCjMK3F9jleiomNXYkUYDCCE4WH4TF1KwGd+LQBROpO2jZpXME= =ioTb -----END PGP SIGNATURE-----