Ubuntu Security Notice USN-5787-2 ≈ Packet Storm

Home^[1] Files^[2] News^[3] &[SERVICES_TAB] Contact^[4] Add New^[5]

Change Mirror^[15] Download^[16]

        ==========================================================================
Ubuntu Security Notice USN-5787-2
January 09, 2023
libksba vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 16.04 ESM
- Ubuntu 14.04 ESM
Summary:
Libksba could be made to crash or run programs if it processed specially
crafted data.
Software Description:
- libksba: X.509 and CMS support library
Details:
USN-5787-1 fixed vulnerabilities in Libksba. This update provides the
corresponding updates for Ubuntu 16.04 ESM and Ubuntu 14.04 ESM.
Original advisory details:
It was discovered that Libksba incorrectly handled parsing CRL signatures.
A remote attacker could use this issue to cause Libksba to crash, resulting
in a denial of service, or possibly execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 16.04 ESM:
libksba8                        1.3.3-1ubuntu0.16.04.1+esm2
Ubuntu 14.04 ESM:
libksba8                        1.3.0-3ubuntu0.14.04.2+esm2
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-5787-2
https://ubuntu.com/security/notices/USN-5787-1
CVE-2022-47629

• Follow us on Twitter^[19]
• Subscribe to an RSS Feed^[20]

File Tags

• ActiveX^[21] (932)
• Advisory^[22] (79,803)
• Arbitrary^[23] (15,715)
• BBS^[24] (2,859)
• Bypass^[25] (1,623)
• CGI^[26] (1,018)
• Code Execution^[27] (6,948)
• Conference^[28] (674)
• Cracker^[29] (840)
• CSRF^[30] (3,290)
• DoS^[31] (22,620)
• Encryption^[32] (2,353)
• Exploit^[33] (50,399)
• File Inclusion^[34] (4,166)
• File Upload^[35] (946)
• Firewall^[36] (821)
• Info Disclosure^[37] (2,663)
• Intrusion Detection^[38] (867)
• Java^[39] (2,903)
• JavaScript^[40] (821)
• Kernel^[41] (6,300)
• Local^[42] (14,207)
• Magazine^[43] (586)
• Overflow^[44] (12,429)
• Perl^[45] (1,418)
• PHP^[46] (5,094)
• Proof of Concept^[47] (2,293)
• Protocol^[48] (3,437)
• Python^[49] (1,468)
• Remote^[50] (30,070)
• Root^[51] (3,506)
• Rootkit^[52] (501)
• Ruby^[53] (595)
• Scanner^[54] (1,633)
• Security Tool^[55] (7,791)
• Shell^[56] (3,106)
• Shellcode^[57] (1,206)
• Sniffer^[58] (887)
• Spoof^[59] (2,171)
• SQL Injection^[60] (16,112)
• TCP^[61] (2,382)
• Trojan^[62] (686)
• UDP^[63] (878)
• Virus^[64] (662)
• Vulnerability^[65] (31,161)
• Web^[66] (9,377)
• Whitepaper^[67] (3,732)
• x86^[68] (946)
• XSS^[69] (17,498)
• Other^[70]

File Archives

• January 2023^[71]
• December 2022^[72]
• November 2022^[73]
• October 2022^[74]
• September 2022^[75]
• August 2022^[76]
• July 2022^[77]
• June 2022^[78]
• May 2022^[79]
• April 2022^[80]
• March 2022^[81]
• February 2022^[82]
• Older^[83]

Systems

• AIX^[84] (426)
• Apple^[85] (1,935)
• BSD^[86] (370)
• CentOS^[87] (55)
• Cisco^[88] (1,917)
• Debian^[89] (6,644)
• Fedora^[90] (1,690)
• FreeBSD^[91] (1,242)
• Gentoo^[92] (4,279)
• HPUX^[93] (878)
• iOS^[94] (333)
• iPhone^[95] (108)
• IRIX^[96] (220)
• Juniper^[97] (67)
• Linux^[98] (44,360)
• Mac OS X^[99] (684)
• Mandriva^[100] (3,105)
• NetBSD^[101] (255)
• OpenBSD^[102] (479)
• RedHat^[103] (12,478)
• Slackware^[104] (941)
• Solaris^[105] (1,607)
• SUSE^[106] (1,444)
• Ubuntu^[107] (8,213)
• UNIX^[108] (9,172)
• UnixWare^[109] (185)
• Windows^[110] (6,511)
• Other^[111]

© 2022 Packet Storm. All rights reserved.

Read more https://packetstormsecurity.com/files/170402/USN-5787-2.txt