
- -------------------------------------------------------------------------
Debian Security Advisory DSA-5367-1                   [email protected]
https://www.debian.org/security/                       Sebastien Delafond
March 02, 2023                        https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : spip
CVE ID         : CVE-2023-27372

It was discovered that SPIP, a website engine for publishing, would
allow a malicious user to execute arbitrary code.

For the stable distribution (bullseye), this problem has been fixed in
version 3.2.11-3+deb11u7.

We recommend that you upgrade your spip packages.

For the detailed security status of spip please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/spip

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

Debian: DSA-5367-1: spip security update

March 2, 2023

It was discovered that SPIP, a website engine for publishing, would allow a malicious user to execute arbitrary code

Summary

For the stable distribution (bullseye), this problem has been fixed in
version 3.2.11-3+deb11u7.

We recommend that you upgrade your spip packages.

For the detailed security status of spip please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/spip

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

Severity

It was discovered that SPIP, a website engine for publishing, would

allow a malicious user to execute arbitrary code.

Related News

GitHub Publishes RSA SSH Host Keys by Mistake, Issues Update

Mar 28, 2023

Researchers Uncover 700+ Malicious Open Source Packages

Feb 22, 2023

Proposed Linux Patch Would Allow Disabling CPU Security Mitigations At Build-Time

Feb 13, 2023

Stealthy Malware Distribution Involves Polyglot Files

Jan 19, 2023

News

Cloud Security
Cryptography
Desktop Security
Firewall
Government
Hacks/Cracks
IoT Security
Network Security
Organizations/Events
Privacy
Security Projects
Security Trends
Security Vulnerabilities
Server Security
Vendors/Products

Advisories

ArchLinux
CentOS
Debian
Debian LTS
Fedora
Gentoo
Mageia
Oracle
openSUSE
Red Hat
RockyLinux
Scientific Linux
Slackware
SuSE
Ubuntu

HOWTOs

Harden My Filesystem
Learn Tips and Tricks
Secure My E-mail
Secure My Firewall
Secure My Network
Secure My Webserver
Strengthen My Privacy

Features

Interview with Guardian Digital CEO Dave Wreski: Open Source Utilization in Email Security Solutions & More

Verifying Linux Server Security: What Every Admin Needs to Know

What Linux, Windows & Mac OS Users Need to Know About VPNs

Complete Guide to Vulnerability Basics

How To Get Live Updates on Critical Linux Security Advisories

About Us

Advertise
Legal Notice
RSS Feeds
Contact Us

Powered By

182

© 2023 Guardian Digital, Inc All Rights Reserved

News
Cloud Security
Cryptography
Desktop Security
Firewall
Government
Hacks/Cracks
IoT Security
Network Security
Organizations/Events
Privacy
Security Projects
Security Trends
Security Vulnerabilities
Server Security
Vendors/Products
Advisories
ArchLinux
CentOS
Debian
Debian LTS
Fedora
Gentoo
Mageia
Oracle
openSUSE
Red Hat
RockyLinux
Scientific Linux
Slackware
SuSE
Ubuntu
HOWTOs
Harden My Filesystem
Learn Tips and Tricks
Secure My E-mail
Secure My Firewall
Secure My Network
Secure My Webserver
Strengthen My Privacy
Features
Feature Articles
Must Read Articles
Newsletters
Polls
About
Advertise
Legal Notice
RSS Feeds
Contact Us
Security Dictionary

Advisories

ArchLinux

CentOS

Debian

Debian LTS

Fedora

Gentoo

Mageia

Oracle

openSUSE

Red Hat

RockyLinux

Scientific Linux

Slackware

SuSE

Ubuntu

openSUSE

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox

Linux Advisory Watch

Linux Security Week

Learn How To Protect Against Linux Security Vulnerabilities Explore ManageEngine Vulnerability Manager Plus!

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.
Learn More About Our Cookie Policy
You are now being logged in using your Facebook credentials

What Are You Looking For?

Popular Tags

Debian: DSA-5367-1: spip security update

Summary

GitHub Publishes RSA SSH Host Keys by Mistake, Issues Update

Researchers Uncover 700+ Malicious Open Source Packages

Proposed Linux Patch Would Allow Disabling CPU Security Mitigations At Build-Time

Stealthy Malware Distribution Involves Polyglot Files

News

Advisories

HOWTOs

Features

Interview with Guardian Digital CEO Dave Wreski: Open Source Utilization in Email Security Solutions & More

Verifying Linux Server Security: What Every Admin Needs to Know

What Linux, Windows & Mac OS Users Need to Know About VPNs

Complete Guide to Vulnerability Basics

How To Get Live Updates on Critical Linux Security Advisories

About Us

Powered By