-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5306-1 security@debian.org https://www.debian.org/security/ Salvatore Bonaccorso December 27, 2022 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : gerbv CVE ID : CVE-2021-40393 CVE-2021-40394 CVE-2021-40401 CVE-2021-40403 Several vulnerabilities were discovered in gerbv, a Gerber file viewer, which could result in the execution of arbitrary code, denial of service or information disclosure if a specially crafted file is processed. For the stable distribution (bullseye), these problems have been fixed in version 2.7.0-2+deb11u2. We recommend that you upgrade your gerbv packages. For the detailed security status of gerbv please refer to its security tracker page at: https://security-tracker.debian.org/tracker/gerbv Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmOq/ExfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0Qbzw/9HJCEspk5wEzreH6CJZb1NQdGHFg4WupQnTss3bOhJF9bw6RJegaGNZB+ XhJ3b6924dwu5yI/WfFn7lcNSvNlZ2gRE/VqOeWtBTrwI0+xGbKX/dN/qve98sXD gsbQPFi16Vky/5IWMvu9zYAlHAeyjeS1uCVPartlEdQZOzMQ360GDvY/GJ9X8bKl dQ1+LtV5qxph97sYuADttNdCY+Qeuu5bvsgXZiKHUX3Fa5v7855APS12w8kRbvaH e9mAhokQ3AXWyZguvBUIEDuHxRR2OeLH5wXQDe5/R/AHiUrkghxmWX2k1APhP7BS 7gfVgNy7yhnZVPLmd85yKSOndiIy3v8rUg8KPmSN7lTKMJDLdlneNHa+vesKN9Ug B431fvT6z6s3ZOOTIKE9X/G/m11m54QbC0TyXDkL0lFzCC+JHcKxrRK7PxPcJ5Wm yt7/tW3tYHGMNYF30IEqvETXONMh1H4Adg5M5leuXK3j1dotUBtGprAGAZKuc164 zNzejkoRfhtOOU5244AU+qWrc803jWhHcPX/a3+STt/IVAykUIw1lxsskNpQx+Jn zyBnU85KNZtyB99kkrbjPfhX5vImv4iBrN0hEmnnbQHM22YilTN1BMZJAbEKyD6j tSvyKwotRXD6TEpYIe7fMPz5rwxg1by4LpBlE3x3gvbjN6zFO8I=yc9S -----END PGP SIGNATURE-----