Debian 10225 Published by

The following security updates have been released for Debian GNU/Linux Extended LTS:

ELA-1168-1 bind9 security update
ELA-1167-1 libtommath security update
ELA-1166-1 frr security update
ELA-1169-1 intel-microcode security update




ELA-1168-1 bind9 security update

Package : bind9
Version : 1:9.11.5.P4+dfsg-5.1+deb10u13 (buster)

Related CVEs :
CVE-2023-4408
CVE-2024-1737
CVE-2024-1975

Several vulnerabilities were discovered in BIND, a DNS server
implementation, which may result in denial of service.

ELA-1168-1 bind9 security update


ELA-1167-1 libtommath security update

Package : libtommath
Version : 0.42.0-1.1+deb8u1 (jessie), 1.0-4+deb9u1 (stretch), buster (1.1.0-3+deb10u1)

Related CVEs :
CVE-2023-36328

It was discovered that there was a series of integer overflow vulnerabilities
in LibTomMath, a multiple-precision mathematics library.
This could have led attackers to execute arbitrary code and/or cause a denial
of service (DoS).

ELA-1167-1 libtommath security update


ELA-1166-1 frr security update

Package : frr
Version : 7.5.1-1.1+deb10u3 (buster)

Related CVEs :
CVE-2024-44070

An issue has been found in frr, a routing suite of internet protocols (BGP, OSPF, IS-IS, …)
Before using the TLV value, due to a missing length check of the remaining stream, one could read behind the buffer.

ELA-1166-1 frr security update


ELA-1169-1 intel-microcode security update

Package : intel-microcode
Version : 3.20240813.1~deb8u1 (jessie), 3.20240813.1~deb9u1 (stretch), 3.20240813.1~deb10u1 (buster)

Related CVEs :
CVE-2023-42667
CVE-2023-45733
CVE-2023-45745
CVE-2023-46103
CVE-2023-47855
CVE-2023-49141
CVE-2024-24853
CVE-2024-24980
CVE-2024-25939

This update ships updated CPU microcode for some types of Intel CPUs and
provides mitigations for vulnerabilities that may allow a privileged user to
potentially enable escalation of privilege, partial information disclosure, or
denial of service via local access.

ELA-1169-1 intel-microcode security update