[SECURITY] [DLA 2122-1] libusbmuxd security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 2122-1] libusbmuxd security update
From: Dylan Aïssi <daissi@debian.org>
Date: Thu, 27 Feb 2020 23:08:52 +0100
Message-id: <[🔎] CA+6XHwQGDf5JoVjBRk4KX7XMz5dur2FiSGJvKTEZs4p8V0T+dQ@mail.gmail.com>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : libusbmuxd
Version        : 1.0.9-1+deb8u1
CVE ID         : CVE-2016-5104
Debian Bug     : 825554

It was discovered that libusbmuxd incorrectly handled socket
permissions. A remote attacker could use this issue to access
services on iOS devices, contrary to expectations.

For Debian 8 "Jessie", this problem has been fixed in version
1.0.9-1+deb8u1.

We recommend that you upgrade your libusbmuxd packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=bvjO
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 2121-1] libimobiledevice security update
Next by Date: [SECURITY] [DLA 2123-1] pure-ftpd security update
Previous by thread: [SECURITY] [DLA 2121-1] libimobiledevice security update
Next by thread: [SECURITY] [DLA 2123-1] pure-ftpd security update
Index(es):
- Date
- Thread