Debain Released Security Updates

debian security

Don A Bailey from Lab Mouse security discovered an integer overflow flaw in the way the lzo library decompressed certain archives compressed with the LZO algorithm. An attacker could create a specially crafted LZO-compressed input that, when decompressed by an application using the lzo library, would cause that application to crash or, potentially, execute malicious code.

This issue only affects 32-bit systems and also can only happen if you use uncommonly huge buffer sizes where you have to decompress more than 16 MiB (2^24 bytes) compressed bytes within a single function call.
This problem has been fixed in these versions : 2.06-1+deb7u1, 2.08-1, 2.08-1.
The above vulnerability has been found and fixed by the Debian security team.Debian Security team suggests every user to upgrade lzo2 packages.

About Debian

Debian is an operating system is the set of basic programs and utilities that make your computer run. At the core of an operating system is the kernel. The kernel is the most fundamental program on the computer and does all the basic housekeeping and lets you start other programs.Debian systems currently use the Linux kernel or the FreeBSD kernel. 

To Download Debian Goto

No comments

Powered by Blogger.