DLA 2357-1: ros-actionlib security update

Debian 9921 Published 2020-08-31 05:34 by Philipp Esselbach

News

A ros-actionlib security update has been released for Debian GNU/Linux 9 LTS to address use of unsafe yaml load in the Robot OS actionlib library.

DLA 2357-1: ros-actionlib security update

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2357-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/
August 30, 2020 https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package : ros-actionlib
Version : 1.11.7-1+deb9u1
CVE ID : CVE-2020-10289
Debian Bug :

Use of unsafe yaml load was fixed in ros-actionlib,
the Robot OS actionlib library.

For Debian 9 stretch, this problem has been fixed in version
1.11.7-1+deb9u1.

We recommend that you upgrade your ros-actionlib packages.

For the detailed security status of ros-actionlib please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/ros-actionlib

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

GLSA 202008-22 : targetcli-fb: Multiple vulnerabilities

Lenovo ThinkPad T14s review: AMD's Ryzen 7 PRO 4750U kills it and more

DLA 2357-1: ros-actionlib security update

DLA 2357-1: ros-actionlib security update

Windows

Linux

macOS

Community