{"id":60422,"date":"2024-11-20T20:53:13","date_gmt":"2024-11-20T17:53:13","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/182712\/dsa-5816-1.txt"},"modified":"2024-11-20T20:53:13","modified_gmt":"2024-11-20T17:53:13","slug":"debian-security-advisory-5816-1","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/debian-security-advisory-5816-1\/","title":{"rendered":"Debian Security Advisory 5816-1"},"content":{"rendered":"<p>&#8212;&#8211;BEGIN PGP SIGNED MESSAGE&#8212;&#8211;<br \/>Hash: SHA512<\/p>\n<p>&#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;-<br \/>Debian Security Advisory DSA-5816-1 security@debian.org<br \/>https:\/\/www.debian.org\/security\/ Salvatore Bonaccorso<br \/>November 19, 2024 https:\/\/www.debian.org\/security\/faq<br \/>&#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;-<\/p>\n<p>Package : libmodule-scandeps-perl<br \/>CVE ID : CVE-2024-10224<\/p>\n<p>The Qualys Threat Research Unit discovered that libmodule-scandeps-perl,<br \/>a Perl module to recursively scan Perl code for dependencies, allows an<br \/>attacker to execute arbitrary shell commands via specially crafted file<br \/>names.<\/p>\n<p>Details can be found in the Qualys advisory at<br \/>https:\/\/www.qualys.com\/2024\/11\/19\/needrestart\/needrestart.txt<\/p>\n<p>For the stable distribution (bookworm), this problem has been fixed in<br \/>version 1.31-2+deb12u1.<\/p>\n<p>We recommend that you upgrade your libmodule-scandeps-perl packages.<\/p>\n<p>For the detailed security status of libmodule-scandeps-perl please refer<br \/>to its security tracker page at:<br \/>https:\/\/security-tracker.debian.org\/tracker\/libmodule-scandeps-perl<\/p>\n<p>Further information about Debian Security Advisories, how to apply<br \/>these updates to your system and frequently asked questions can be<br \/>found at: https:\/\/www.debian.org\/security\/<\/p>\n<p>Mailing list: debian-security-announce@lists.debian.org<br \/>&#8212;&#8211;BEGIN PGP SIGNATURE&#8212;&#8211;<\/p>\n<p>iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmc8u7tfFIAAAAAALgAo<br \/>aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2<br \/>NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND<br \/>z0Ta0A\/\/TsnJj10BYWU0GlFOs6sGALdSfLn8vxB\/E5MM6O4ZSEFC0u8KywvrESTg<br \/>oxh5QieR4kqPDnq5JYIKwBZkD+ohI57ji2xcnjYIp\/HRoRXC8IETPvjJHIu5rbtN<br \/>BiMSyvp\/9YYGUfOzPDGgqO7Rhuz\/GqoFwkvziDXiUOg8OYE4kOUunXuMWBXSOQ6W<br \/>Oji2YHHomRb13QY1DnAx5ISAthBlDeTVLAsReWG6e+dzR6Z+VDRLEHwiXJS9EJSS<br \/>Si4a+KLf5TqJRfI+rSDaRJPRO53I657Xk4Ob5PEc1ay6LfUtdg8zzxyt\/FCzlMng<br \/>3mO80A4s2dS4T02L9SeeniSVQFE+etmTQAR3sIoe4AYulgXu5Jz4NrUmNohMdqrq<br \/>xYtIcUD24aig4DRujVMcK5RHndw3JG9\/TP5obPeJ5Cjlb28MpeE67e3bgnqzVdN7<br \/>QZLKPoEX0C9LZk+sWqLYx2P1nwiPeaEwYppSFErsZV3w0qnJkTa97LY2XiRTlIWw<br \/>wBjUrHi78bhoGo2Mpo9iGdjN4fcbBolqZ6c\/xOWTBmouRWWyD1CblpEZ3UUqnn74<br \/>wUqLknPAdMt8F8C91cKPdXoXkY3nrV01jecj8hfUU3qvDvbu4lyjWmUOP+dYJLUt<br \/>zgJobOMroKkug8sld+eweWF1ILdgCsrQRSUrPYyiP4sAMC6uAKE=<br \/>=+uJR<br \/>&#8212;&#8211;END PGP SIGNATURE&#8212;&#8211;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8212;&#8211;BEGIN PGP SIGNED MESSAGE&#8212;&#8211;Hash: SHA512 &#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;-Debian Security Advisory DSA-5816-1 security@debian.orghttps:\/\/www.debian.org\/security\/ Salvatore BonaccorsoNovember 19, 2024 https:\/\/www.debian.org\/security\/faq&#8211; &#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;- Package : libmodule-scandeps-perlCVE ID : CVE-2024-10224 The Qualys Threat Research Unit discovered that libmodule-scandeps-perl,a Perl module to recursively scan Perl code for dependencies, allows anattacker to execute arbitrary shell commands via specially crafted filenames. Details can be found &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-60422","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/60422","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=60422"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/60422\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=60422"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=60422"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=60422"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}