-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2883-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb January 17, 2022 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : uriparser Version : 0.8.4-1+deb9u3 CVE IDs : CVE-2021-46141 CVE-2021-46142 It was discovered that there were two "invalid free" issues in uriparser, a C library for parsing URLs according to RFC 3986. For Debian 9 "Stretch", these problems have been fixed in version 0.8.4-1+deb9u3. We recommend that you upgrade your uriparser packages. For the detailed security status of uriparser please refer to its security tracker page at: https://security-tracker.debian.org/tracker/uriparser Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAmHlRSEACgkQHpU+J9Qx HljKKQ//awKhkuQkqyReWCtMPQ87csBIWaPtA/RDXNTYfeLStC1MsiW198M3FhY4 BsKjKA/gUkYMTfs2isqxSXQl9UPR26mnupn3VKmgvkvHEyee+LirASNnI5XnfP86 aGYZgNptXID8qwp83/nh9LYuZwLlCsu2GRBHYnL4jcUHV1AZ1k2cEuVDhrsSm7dY M9R4wx+9lCFf9/YMxIhzsMmLHoW4mnCwLavhAThAidXA+0miZ0+xk1wKHv83TZBR I+TeLmROtjrPe6gAf9UCgRimQilsIDt9PvuXVqMkXPaSdpPiAIgOWh+QplJHg0o8 HJnnuxb41iEdaQhN2a+/Meqyce4iWgJMWJQj9IMcRnYsZKXkX0DPExGKAZMbmZTh AFOFRM4LAxH+JtRPl1EsQrHDtI6rR8fxrYMwY8kqePrh08w2TJsjR7sYFVPHWbct wx77yuUK7GS5A7XR154X79nfktksn0kYsyIUXkPi+Y08GQWE4TsHTcqVQeGQRm0c 3OmWIxID5Ip9C5prDLktkvwsaWaQWREuZxHmwjyE8lxM28JcVBW3H69Nphdu/1QJ M5vH2CjlytucxsezGjV0f2vVXkFXK7jl7oi9NiuyjrpKmhXZFyTlmmD6zz/EzwOt EnKvHzJJKICVzSatVpz+KZ8wFG9jI1jRrEWF/tx9N2kd9BR+KCs= =TRyp -----END PGP SIGNATURE-----
