[SECURITY] [DLA 4016-1] ucf security update
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
- -------------------------------------------------------------------------
Debian LTS Advisory DLA-4016-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Chris Lamb
January 21, 2025 https://wiki.debian.org/LTS
- -------------------------------------------------------------------------
Package : ucf
Version : 3.0043+deb11u2
Debian Bug : 1089015
It was discovered that there was a potential command-injection
vulnerability was discovered in ucf, a tool to preserve user changes
to config files.
For Debian 11 bullseye, this problem has been fixed in version
3.0043+deb11u2.
We recommend that you upgrade your ucf packages.
For the detailed security status of ucf please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/ucf
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----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=mgef
-----END PGP SIGNATURE-----
Reply to: