[SECURITY] [DLA 3911-1] libgsf security update
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3911-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Adrian Bunk
October 07, 2024 https://wiki.debian.org/LTS
- -------------------------------------------------------------------------
Package : libgsf
Version : 1.14.47-1+deb11u1
CVE ID : CVE-2024-36474 CVE-2024-42415
Debian Bug : 1084056
Integer overflos have been fixed in libgsf,
the GNOME Project G Structured File Library.
CVE-2024-36474
directory integer overflow
CVE-2024-42415
sector allocation table integer overflow
For Debian 11 bullseye, these problems have been fixed in version
1.14.47-1+deb11u1.
We recommend that you upgrade your libgsf packages.
For the detailed security status of libgsf please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libgsf
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----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=gZXx
-----END PGP SIGNATURE-----
Reply to: