Headline
Ubuntu Security Notice USN-6431-3
Ubuntu Security Notice 6431-3 - USN-6431-1 fixed a vulnerability in iperf3. This update provides the corresponding update for Ubuntu 22.04 LTS. Jorge Sancho Larraz discovered that iperf3 did not properly manage certain inputs, which could cause the server process to stop responding, waiting for input on the control connection. A remote attacker could possibly use this issue to cause a denial of service.
==========================================================================Ubuntu Security Notice USN-6431-3October 16, 2023iperf3 vulnerability==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 22.04 LTS (Available with Ubuntu Pro)Summary:iperf3 could be made to to stop responding if it received speciallycrafted network traffic.Software Description:- iperf3: Internet Protocol bandwidth measuring toolDetails:USN-6431-1 fixed a vulnerability in iperf3. This update providesthe corresponding update for Ubuntu 22.04 LTS.Original advisory details: Jorge Sancho Larraz discovered that iperf3 did not properly manage certain inputs, which could cause the server process to stop responding, waiting for input on the control connection. A remote attacker could possibly use this issue to cause a denial of service. (LP: #2038654)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 22.04 LTS (Available with Ubuntu Pro): iperf3 3.9-1+deb11u1ubuntu0.1~esm1 libiperf0 3.9-1+deb11u1ubuntu0.1~esm1In general, a standard system update will make all the necessary changes.References: https://ubuntu.com/security/notices/USN-6431-3 https://ubuntu.com/security/notices/USN-6431-1 https://launchpad.net/bugs/2038654