[SECURITY] [DLA 997-1] libffi security update

2017-06-21T14:53:02
ID DEBIAN:DLA-997-1:966C0
Type debian
Reporter Debian
Modified 2017-06-21T14:53:02

Description

Package : libffi Version : 3.0.10-3+deb7u1 CVE ID : CVE-2017-1000376

libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Please note that libffi is used by a number of other libraries.

For Debian 7 "Wheezy", these problems have been fixed in version 3.0.10-3+deb7u1.

We recommend that you upgrade your libffi packages.

Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS