You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa sniffit

Sigurnosni nedostatak programskog paketa sniffit

==========================================================================
Ubuntu Security Notice USN-4652-1
November 30, 2020

sniffit vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 16.04 LTS

Summary:

SniffIt could be made to crash or run programs as root if it
opened a specially crafted file.

Software Description:
– sniffit: packet sniffer and monitoring tool

Details:

It was discovered that SniffIt incorrectly handled certain configuration
files. An attacker could possibly use this issue to execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 LTS:
sniffit 0.3.7.beta-19ubuntu0.1

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/4652-1
CVE-2014-5439

Package Information:
https://launchpad.net/ubuntu/+source/sniffit/0.3.7.beta-19ubuntu0.1

—–BEGIN PGP SIGNATURE—–
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=XYw8
—–END PGP SIGNATURE—–

Top
More in Preporuke
Sigurnosni nedostatak programskog paketa Red Hat Single Sign-On

Otkriven je sigurnosni nedostatak u programskom paketu Red Hat Single Sign-On za operacijski sustav RHEL. Otkriveni nedostatak potencijalnim napadačima omogućuje...

Close