-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3076-1 debian-...@lists.debian.org https://www.debian.org/lts/security/ Emilio Pozuelo Monfort August 18, 2022 https://wiki.debian.org/LTS - -------------------------------------------------------------------------
Package : freecad Version : 0.18~pre1+dfsg1-5+deb10u1 CVE ID : CVE-2021-45844 Debian Bug : 1005747 A command injection vulnerability was found in FreeCAD, a parametric 3D modeler, when importing DWG files with crafted filenames. For Debian 10 buster, this problem has been fixed in version 0.18~pre1+dfsg1-5+deb10u1. We recommend that you upgrade your freecad packages. For the detailed security status of freecad please refer to its security tracker page at: https://security-tracker.debian.org/tracker/freecad Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAmL+LoIACgkQnUbEiOQ2 gwKIRA//ernNxcUlUOqbB4Dbct2pImjlznrAJVsxzAwD6wGLlvDkv46CHg4xO6g9 lBkc81HP3HzxLfcHi5sl/S8fwGHy0ebaOyYj4tpm7N2UG5H1goFWSyZg+Y34MZ97 FDgRcYSMakB/NwVhYorSQUJYYrQp1BkXef6M/KyQcz2RvkwpDr845hnJ/MqkjA4n Mo1MJ6SOr2/ufnRDq+DGCos5h6jqHR7+XE7wWADc5oJ0bxEdUMqjJjg6VJo/5qK0 EIfqaM9kdYGCoEU8Qx70Mn2r70g7GTeBcgnhgfigjO/ETzozgRTHl/kaIAyzGiNR 28YNayWFGRCsyeSYTcdN5afmZuuByTqqUY6eBWU/cp0AwX5VSh7tNH9JJRAIHVbA SJu5WZZQWtB//TJrmkSxQP/V8QA1HHArp8Zsiv1DE4SS5uA7iBaZkZZk1zTrNFLk OGLWmSQUPsqlT2ZTJBzJvpsHgrkdf7G+lsip2/AYAIZNPU2Qnlmt1TXvkzHuSorr O0gpDlYPFVEl8Oxw/cjjBCk4w5AU+WkN0CKIk6TYaRQprCI8ofEJCumpkNmObClU qYcKKm0KOcWQ/gNbh6lpFtXvsW1Ep/0U0mZyBVjDsx27klc2LItjEgYfq0Q+/Xro b3Vfyb3ULcrvdhim8Oype5HH+ptCbtfqKWJQLJUf3csU4L7aLHI= =ENAA -----END PGP SIGNATURE-----