-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3406-1 security@xxxxxxxxxx https://www.debian.org/security/ Moritz Muehlenhoff November 25, 2015 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : nspr CVE ID : CVE-2015-7183 It was discovered that incorrect memory allocation in the NetScape Portable Runtime library might result in denial of service or the execution of arbitrary code. For the oldstable distribution (wheezy), this problem has been fixed in version 2:4.9.2-1+deb7u3. For the stable distribution (jessie), this problem has been fixed in version 2:4.10.7-1+deb8u1. For the testing distribution (stretch), this problem has been fixed in version 2:4.10.10-1. For the unstable distribution (sid), this problem has been fixed in version 2:4.10.10-1. We recommend that you upgrade your nspr packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@xxxxxxxxxxxxxxxx -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBAgAGBQJWVivTAAoJEBDCk7bDfE42Uk4P/jrFedfGcSjuQhynq/+DA47v tblAyARvu7Bm1leVtg/lDscyN79/aDzymtBmmkUhg9JXfz/K8E9beq/gLmaQtuIK oxt+ktDDn6KFJdrf69fclkR3T3bN/d2MLmOJzzu66KS/Udup6R2UMIe9HjZzp3hJ J6V8D1lj5ZGcuhoreg9F81E1uP1xshKyBbC7iyz82y5meOYETeMVKNnuoiv2+1i+ rbPyKEy9wEahE+en/JYgitQyAwtlVKBUg12k2eNShkIiKtkmqZCYVnCPMx6wIVVR eNoz5mvDnBBXAJc/QH3sTdyQq78G4xmyXUwseuJ+FMeCSp/xj28nqS7FwjrnLQ0v xKADCeQ8WqOTZc+A2Siw9vyIopoUoGdOLTrlYprNK+cIYZexom4pzgDmyBP5mADj QY2f4zgIv2vvfO7gGYNiR1va2CYTkXm9zUvxL1E2h5N0b2WjCQAz0KGzKOy6seRK ogNWm/OYhZ8ToXGCEqftw/UFosNoZQsXBSMgQGHtUUmt7LtxgC9H4z4AInDIQ+qD zOUCo4hTh1W8DJPpwC7bDRKdQ+J7wW+3EMyhxF0aZF+30a3E3RTs0s6JWw1RGc+Y Cjw6XVKfgGDrawqyuIwqa6WsFMuKb1hYLt8/uAMJJvQOaZJEpEZ3YuT+g/ZyAoi2 wxtlARCOQPp/WpsYS0kd =L58f -----END PGP SIGNATURE-----
