Debian Long Term Support / LTS Security Information / 2016 / Security Information -- DLA-469-1 libgwenhywfar

Debian Security Advisory

DLA-469-1 libgwenhywfar -- LTS security update

Date Reported:

12 May 2016

Affected Packages:

libgwenhywfar

Vulnerable:

Yes

Security database references:

In the Debian bugtracking system: Bug 748955.
In Mitre's CVE dictionary: CVE-2015-7542.

More information:

It was discovered that libgwenhywfar (an OS abstraction layer that allows porting of software to different operating systems like Linux, *BSD, Windows etc.) used an outdated CA certificate bundle.

For Debian 7 Wheezy, this issue has been fixed in libgwenhywfar version 4.3.3-1+deb7u1 by utilising the ca-certificates package.

We recommend that you upgrade your libgwenhywfar packages.