==========================================================================
Ubuntu Security Notice USN-3454-2
October 24, 2017
libffi vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
– Ubuntu 12.04 ESM
Summary:
A security issue was fixed in libffi.
Software Description:
– libffi: Foreign Function Interface library (development files, 32bit)
Details:
USN-3454-1 fixed a vulnerability in libffi. This update
provides the corresponding update for Ubuntu 12.04 ESM.
Original advisory details:
It was discovered that libffi incorrectly enforced an executable
stack. An attacker could possibly use this issue, in combination with
another vulnerability, to facilitate executing arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 12.04 ESM:
libffi6 3.0.11~rc1-5ubuntu0.1
In general, a standard system update will make all the necessary
changes.
References:
https://www.ubuntu.com/usn/usn-3454-2
https://www.ubuntu.com/usn/usn-3454-1
CVE-2017-1000376
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2
iQIcBAABCAAGBQJZ70QHAAoJEEW851uECx9pynYP/2umubx2aNpq8naPla/lLg1m
YRtupceUsuie1OjbFUfgzQuhgMRhDs0PliJqV2TO9zFssGPNnI6ZV6yzCInQqMvl
lMmWBf9SaPZxERuXLq8DeswQd4I6S7i0LFSb5W03uGxuyWaQKrhRyceqSRtLljI4
KfOMt2/AaVCQBVeAte32O4lokmUbqBK6alX7djftW54y9ZWTqemXwN45QEoRrpsn
Rq6wrK0z7rXe0BrHsq6ULFkD01iXmMV36wlzb1I8iYBT0gacp3SgIkh7vSixi1X9
/iaFpz+KpdZZM5+TXWrCP5y42wSx+Q0dqgCRyZCs+FNi00y5p5+ghmbQzBafGILe
tKMQUizbd3I1C+nFjNHDTuQMdz3Cy6zubOmrhzpfWf1RTzZacavFP5cRlQW2FBz7
1pm1KDlN2+DRPSRur+F5jL+MwA+24wwz7CKd6DlAC6QWI1IUwpSzN5/HVkGjwOVB
WRmjxvz4PJCzaA4orp5KV261JitsSQ5+gU4I4qca2ZV8+mRa5gZ4Uhb3Bgo43OIs
cNoxMhSRpHjTEewGTi3iFgPMzW+CRfG8dGzPNFSIa++JLS8xHFTQZhOd92so2y+Z
93MSvC4X7CMTkXsnVChwag9oKEEsj81EMjMb6c72tvS6/WImBT0O3je8AhByE822
Ao92BRJHTySvllc8uXAv
=Z5UW
—–END PGP SIGNATURE—–
—