[SECURITY] [DSA 5327-1] swift security update

To: debian-security-announce@lists.debian.org
Subject: [SECURITY] [DSA 5327-1] swift security update
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Tue, 24 Jan 2023 20:03:46 +0000
Message-id: <[🔎] Y9A5ojXNWVekz22i@seger.debian.org>
Reply-to: debian-security-announce-request@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5327-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
January 24, 2023                      https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : swift
CVE ID         : CVE-2022-47950
Debian Bug     : 1029200

Sebastien Meriot discovered that the S3 API of Swift, a distributed
virtual object store, was susceptible to information disclosure.

For the stable distribution (bullseye), this problem has been fixed in
version 2.26.0-10+deb11u1.

We recommend that you upgrade your swift packages.

For the detailed security status of swift please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/swift

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=QW6t
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DSA 5326-1] nodejs security update
Next by Date: [SECURITY] [DSA 5328-1] chromium security update
Previous by thread: [SECURITY] [DSA 5326-1] nodejs security update
Next by thread: [SECURITY] [DSA 5328-1] chromium security update
Index(es):
- Date
- Thread