-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Package : libgxps Version : 0.2.2-2+deb7u1 CVE ID : CVE-2017-11590 Debian Bug : #870183
It was discovered that there was a NULL pointer dereference in libgxps, a library to handle XML Paper Specification specifications. Specially-crafted input could lead to a remote denial of service attack. For Debian 7 "Wheezy", this issue has been fixed in libgxps version 0.2.2-2+deb7u1. We recommend that you upgrade your libgxps packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlmO+G8ACgkQHpU+J9Qx HlhySA/8D/kUuD8Ql2N5QYh5Xvi9YnRIeNIrk8g5rq/I7gyiRDkc4PBTk3IM0+Nk xyLvILmOriPbd8L/gauGWbNDfHp3aNpvWYMYVk5X+uHkB0YUcvxNwvKHFHIgt6m9 09OI+4EpvvMpdZiTF0JYBf9UVa6fUj/Wh8n9IkhIqeW+PvoVu5uDwsq5K5RiCxNG /E+wxZDHcMwGy1BXulUTuR1WYOYRCzJWkcGZ8rC2nN9x6EWu1T4JB55BVvIZZyL7 nppEJoGxo8VLCnr69UUgXs+k3l33m5HuP3jL1t6OrGClotk9c0LQFY9g2ahewCZ9 2bXgErqeyY4HMdz3kAR3+A/fwv0d9NHg81J6UI77zJupJfLlA8y+ZHrPP2H4nyFX ef+5TzQridgmFrfzFgdqwbAWk47DnGiy/Afu3kdQlEX4rHFNWzadDdo4bIhyq2dA ZomTTKF4aa3BbSPDFwjzA21UoPG4TWidY6uzFcdLdh0b4KsM0c/pW9oAuX3jaYOP wt0K7KAdDI2KonY+4Me+eY7mLwrtwSA1vTsRPzgNYVvcecEp4DAzmOVS4q6hjPYQ wSjyF9E3ygl4L0ea6q91NUQDONui1d972ndKIrOeprZXkYbyHER/bnmua/8+36Fu z7bYJ4Bz5klouwbe3b58SSNef8d34FK4BnVcStT/E6noJbkkRAY= =qnhk -----END PGP SIGNATURE-----