DLA-2476-1

Source

https://storage.googleapis.com/debian-osv/dla-osv/DLA-2476-1.json

Aliases

CVE-2020-8927 ( ALSA-2021:1702, ALSA-2022:0827, ALSA-2022:0830, DSA-4801-1, GHSA-5v8v-66v8-mwm7, PYSEC-2020-29, RLSA-2021:1702, RLSA-2022:0827, RLSA-2022:0830, RUSTSEC-2021-0131, RUSTSEC-2021-0132 )

Published

2020-12-01T00:00:00Z

Modified

2022-08-05T05:18:58.676768Z

Details

A buffer overflow was discovered in Brotli, a generic-purpose lossless compression suite.

For Debian 9 stretch, this problem has been fixed in version 0.5.2+dfsg-2+deb9u1.

We recommend that you upgrade your brotli packages.

For the detailed security status of brotli please refer to its security tracker page at: https://security-tracker.debian.org/tracker/brotli

Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS

References

https://www.debian.org/lts/security/2020/dla-2476

Affected packages

Debian:9 / brotli

brotli

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0

Fixed

0.5.2+dfsg-2+deb9u1

Affected versions

0.*

0.5.2+dfsg-2