ELA-1185-1 iproute2 security update

use-after-free

2024-09-28
Packageiproute2
Version4.20.0-2+deb10u2 (buster)
Related CVEs CVE-2019-20795


Use-after-free in get_netnsid_from_name() has been fixed in iproute2, a collection of utilities for controlling TCP/IP networking and traffic control.



For Debian 10 buster, these problems have been fixed in version 4.20.0-2+deb10u2.

We recommend that you upgrade your iproute2 packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.