Sync updates from Debian Buster Security (!4) · Merge requests · pkg / p11-kit · GitLab

🔴 v2024.3 entered Hard Code Freeze, changes will not be accepted • schedule

🔴 v2025pre entered Hard Code Freeze, changes will not be accepted • schedule

🟠 v2026dev0 entered Soft Code Freeze/Hard Feature Freeze, only bug fixes will be accepted • schedule

Ritesh Raj Sarraf requested to merge proposed-updates/ritesh/buster-security.apertis/v2020-security into apertis/v2020-security Jul 27, 2021

p11-kit (0.23.15-2+deb10u1) buster-security; urgency=high

Non-maintainer upload by the Security Team.
Fix bounds check in p11_rpc_buffer_get_byte_array (CVE-2020-29362)
Check attribute length against buffer size (CVE-2020-29363)
Check for arithmetic overflows before allocating (CVE-2020-29361)
Follow-up to arithmetic overflow fix (CVE-2020-29361)

Apertis Website Terms of Use Privacy Policy