-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3857-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb September 03, 2024 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : libtommath Version : 1.2.0-6+deb11u1 CVE ID : CVE-2023-36328 It was discovered that there was a series of integer overflow vulnerabilities in LibTomMath, a multiple-precision mathematics library. This could have led attackers to execute arbitrary code and/or cause a denial of service (DoS). For Debian 11 bullseye, this problem has been fixed in version 1.2.0-6+deb11u1. We recommend that you upgrade your libtommath packages. For the detailed security status of libtommath please refer to its security tracker page at: https://security-tracker.debian.org/tracker/libtommath Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAmbXAuIACgkQHpU+J9Qx HljQzBAAqAVBwclLuE960dZfai+x6tjKGR30xQuwHR3ap8Kv1d/cfAdEH13q6ELv cpC+zmxWQqfd7eJUQZV2+S6NzTaXuR/SQyKELzFBdrEgvL1N3BAZik5qT57/J+6S Q8T4yc6O6PuVniMxEqvO5bkmGms+mK4//wZDuBgqO9lHQoBW/ybUAOiCnQ8hbeWh 2BlgWl8JQYgywi3AuhyfiLNarLy3XNefkPh2+3AB/tyP3HhX+BfXhmFcTm9CXRh5 rPpJGbezcvQTXNOMQp9MZ7w1JDjEhG9GQCXPQwiW3AASm1Ms1vKRDv2GCxI8TB8v tzRjQHhHzJA6bdKDhco70bdf5PnAIQUEwvJHAso9co+P5X4PQICWq6DR+tMjjq2Q dgKolAdzpzTDt2cT61ookFebOSDfvie7qtcEO+O2GisqZdfL4RnsHL0hBKiEhk4v VdMF+iOUHkV49yme4V/j1O8n+LUVegbTZsvbmAMl50VqJxfFkeYoTAjiKvYs6KGE gW/hGxQez8A4nYxAfexZIk2Vv9c8PTCNKZZfeU5/7dYmofNtFK20Ovl7EOEYYYq4 WAIxXmtMD8ToyrZw8Fae3lt5mtHI3jvAaqYp1aIFJohU0cpg1fKr9YWofzcIl8t3 YeUY9iulS7Rb7KIYa8+pgrfSjDA4I5XT56HfFGqGKfWYUfzkKPI= =2eqA -----END PGP SIGNATURE-----
