Ubuntu Security Notice 3309-2 - Jakub Jirasek discovered that GnuTLS incorrectly handled certain assignments files. If a user were tricked into processing a specially crafted assignments file, a remote attacker could possibly execute arbitrary code.
d2c0c5302f6559086320ecc7ba3af4421baf11d0f0d29206837bd55883c8d012==========================================================================
Ubuntu Security Notice USN-3309-2
July 18, 2017
libtasn1-3 vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.04 ESM
Summary:
Libtasn1 could be made to crash or run programs as your login if it
opened a specially crafted file.
Software Description:
- libtasn1-3: Library to manage ASN.1 structures
Details:
Jakub Jirasek discovered that GnuTLS incorrectly handled certain
assignments files. If a user were tricked into processing a specially
crafted assignments file, a remote attacker could possibly execute
arbirary
code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 12.04 ESM:
A libtasn1-3A A A A A A A A A A A A A A A A A A A A A A 2.10-1ubuntu1.6
In general, a standard system update will make all the necessary
changes.
References:
A https://www.ubuntu.com/usn/usn-3309-2
A https://www.ubuntu.com/usn/usn-3309-1
A CVE-2017-6891
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed