Security
Headlines
HeadlinesLatestCVEs

Headline

Ubuntu Security Notice USN-5671-1

Ubuntu Security Notice 5671-1 - It was discovered that AdvanceCOMP did not properly manage memory of function be_uint32_read under certain circumstances. If a user were tricked into opening a specially crafted binary file, a remote attacker could possibly use this issue to cause AdvanceCOMP to crash, resulting in a denial of service. It was discovered that AdvanceCOMP did not properly manage memory of function adv_png_unfilter_8 under certain circumstances. If a user were tricked into opening a specially crafted PNG file, a remote attacker could possibly use this issue to cause AdvanceCOMP to crash, resulting in a denial of service.

Packet Storm
#vulnerability#ubuntu#dos#perl
=========================================================================Ubuntu Security Notice USN-5671-1October 12, 2022advancecomp vulnerabilities=========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 18.04 LTS- Ubuntu 16.04 ESMSummary:Several security issues were fixed in AdvanceCOMP.Software Description:- advancecomp: collection of recompression utilitiesDetails:It was discovered that AdvanceCOMP did not properly manage memory of functionbe_uint32_read() under certain circumstances. If a user were tricked intoopening a specially crafted binary file, a remote attacker could possibly usethis issue to cause AdvanceCOMP to crash, resulting in a denial of service.(CVE-2019-8379)It was discovered that AdvanceCOMP did not properly manage memory of functionadv_png_unfilter_8() under certain circumstances. If a user were tricked intoopening a specially crafted PNG file, a remote attacker could possibly use thisissue to cause AdvanceCOMP to crash, resulting in a denial of service.(CVE-2019-8383)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 18.04 LTS:  advancecomp                     2.1-1ubuntu0.18.04.2Ubuntu 16.04 ESM:  advancecomp                     1.20-1ubuntu0.2+esm1In general, a standard system update will make all the necessary changes.References:  https://ubuntu.com/security/notices/USN-5671-1  CVE-2019-8379, CVE-2019-8383Package Information:  https://launchpad.net/ubuntu/+source/advancecomp/2.1-1ubuntu0.18.04.2

Packet Storm: Latest News

CUPS IPP Attributes LAN Remote Code Execution