You are here
Home > Preporuke > Sigurnosni nedostatak programske biblioteke libtasn1-3

Sigurnosni nedostatak programske biblioteke libtasn1-3

by ncert - 0

==========================================================================
Ubuntu Security Notice USN-3309-2
July 18, 2017

libtasn1-3 vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 12.04 ESM

Summary:

Libtasn1 could be made to crash or run programs as your login if it
opened a specially crafted file.

Software Description:
– libtasn1-3: Library to manage ASN.1 structures

Details:

Jakub Jirasek discovered that GnuTLS incorrectly handled certain
assignments files. If a user were tricked into processing a specially
crafted assignments file, a remote attacker could possibly execute
arbirary
code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 ESM:
  libtasn1-3                      2.10-1ubuntu1.6

In general, a standard system update will make all the necessary
changes.

References:
  https://www.ubuntu.com/usn/usn-3309-2
  https://www.ubuntu.com/usn/usn-3309-1
  CVE-2017-6891
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2
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=0xz4
—–END PGP SIGNATURE—–

ncert
Top
More in Preporuke
Sigurnosni nedostatak programskog paketa apport

Otkriven je sigurnosni nedostatak u programskom paketu apport za operacijski sustav Ubuntu. Otkriveni nedostatak potencijalnim napadačima omogućuje rušenje servisa i...

Close