- ------------------------------------------------------------------------- Debian LTS Advisory DLA-2515-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb January 04, 2021 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : csync2 Version : 2.0-8-g175a01c-4+deb9u2 CVE ID : CVE-2019-15523 It was discovered that csync2, a cluster synchronization tool, did not correctly check for the return value from GnuTLS security routines. It neglected to repeatedly call this function as required by the design of the API. For Debian 9 "Stretch", this problem has been fixed in version 2.0-8-g175a01c-4+deb9u2. We recommend that you upgrade your csync2 packages. For the detailed security status of csync2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/csync2 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS
Debian LTS: DLA-2515-1: csync2 security update
January 4, 2021
It was discovered that csync2, a cluster synchronization tool, did not correctly check for the return value from GnuTLS security routines
Summary
Debian LTS Advisory DLA-2515-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb January 04, 2021 https://wiki.debian.org/LTS Version : 2.0-8-g175a01c-4+deb9u2 It was discovered that csync2, a cluster synchronization tool, did not correctly check for the return value from GnuTLS security routines. It neglected to repeatedly call this function as required by the design of the API. For Debian 9 "Stretch", this problem has been fixed in version 2.0-8-g175a01c-4+deb9u2. We recommend that you upgrade your csync2 packages. For the detailed security status of csync2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/csync2 Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS
Severity
Package : csync2
CVE ID : CVE-2019-15523
News
HOWTOs
Features
Secure Linux Hosting for Businesses
What Is Threat Intelligence?
CloudLinux Simplifies & Enhances Linux Security with its TuxCare Unified Enterprise Support Services
LinuxSecurity, Leading Provider of Linux Security News and Information, Unveils its New Website
Biden's New Executive Cybersecurity Order Highlights the Power of Open-Source Security
About Us
Powered By
