- ------------------------------------------------------------------------- Debian LTS Advisory DLA-2945-1 debian-lts@lists.debian.org https://www.debian.org/lts/security/ Emilio Pozuelo Monfort March 11, 2022 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : tryton-server Version : 4.2.1-2+deb9u2 CVE ID : CVE-2022-26661 CVE-2022-26662 Jeremy Mousset discovered two XML parsing vulnerabilities in the Tryton application platform, which may result in information disclosure or denial of service. For Debian 9 stretch, these problems have been fixed in version 4.2.1-2+deb9u2. We recommend that you upgrade your tryton-server packages. For the detailed security status of tryton-server please refer to its security tracker page at: https://security-tracker.debian.org/tracker/tryton-server Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS
Debian LTS: DLA-2945-1: tryton-server security update
March 10, 2022
Jeremy Mousset discovered two XML parsing vulnerabilities in the Tryton application platform, which may result in information disclosure or denial of service
Summary
For Debian 9 stretch, these problems have been fixed in version
4.2.1-2+deb9u2.
We recommend that you upgrade your tryton-server packages.
For the detailed security status of tryton-server please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/tryton-server
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
Severity
Package : tryton-server
Version : 4.2.1-2+deb9u2
CVE ID : CVE-2022-26661 CVE-2022-26662
News
HOWTOs
Features
About Us
Powered By
