ELA-812-1 mono security update

execution of arbitrary code

Version4.6.2.7+dfsg-1+deb9u1 (stretch)
Related CVEs CVE-2023-26314

Triggering arbitrary code execution was possible due to .desktop files registered as application/x-ms-dos-executable MIME handlers in the open source .NET framework Mono.

For Debian 9 stretch, these problems have been fixed in version

We recommend that you upgrade your mono packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.