==========================================================================
Ubuntu Security Notice USN-4049-4
August 06, 2019

glib2.0 regression
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 14.04 ESM
– Ubuntu 12.04 ESM

Summary:

USN-4049-1 introduced a regression in GLib.

Software Description:
– glib2.0: GLib Input, Output and Streaming Library (fam module)

Details:

USN-4049-1 fixed a vulnerability in GLib. The update introduced a regression.
This update fixes the problem.

We apologize for the inconvenience.

Original advisory details:

It was discovered that GLib created directories and files without properly
restricting permissions. An attacker could possibly use this issue to access
sensitive information.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 ESM:
libglib2.0-0 2.40.2-0ubuntu1.1+esm3
libglib2.0-bin 2.40.2-0ubuntu1.1+esm3

Ubuntu 12.04 ESM:
libglib2.0-0 2.32.4-0ubuntu1.4
libglib2.0-bin 2.32.4-0ubuntu1.4

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/4049-4
https://usn.ubuntu.com/4049-1
https://launchpad.net/bugs/1838890
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1
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=0aD4
—–END PGP SIGNATURE—–
—