Ubuntu Security Notice 7081-1 - It was discovered that the Go net/http module did not properly handle responses to requests with an "Expect: 100-continue" header under certain circumstances. An attacker could possibly use this issue to cause a denial of service. It was discovered that the Go parser module did not properly handle deeply nested literal values. An attacker could possibly use this issue to cause a panic resulting in a denial of service.

==========================================================================  
Ubuntu Security Notice USN-7081-1  
October 23, 2024

golang-1.22 vulnerabilities  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS  
- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS

Summary:

Several security issues were fixed in Go.

Software Description:  
- golang-1.22: Go programming language compiler

Details:

It was discovered that the Go net/http module did not properly handle  
responses to requests with an "Expect: 100-continue" header under certain  
circumstances. An attacker could possibly use this issue to cause a denial  
of service. (CVE-2024-24791)

It was discovered that the Go parser module did not properly handle deeply  
nested literal values. An attacker could possibly use this issue to cause  
a panic resulting in a denial of service. (CVE-2024-34155)

It was discovered that the Go encoding/gob module did not properly handle  
message decoding under certain circumstances. An attacker could possibly  
use this issue to cause a panic resulting in a denial of service.  
(CVE-2024-34156)

It was discovered that the Go build module did not properly handle certain  
build tag lines with deeply nested expressions. An attacker could possibly  
use this issue to cause a panic resulting in a denial of service.  
(CVE-2024-34158)

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 24.04 LTS  
  golang-1.22                     1.22.2-2ubuntu0.3  
  golang-1.22-go                  1.22.2-2ubuntu0.3  
  golang-1.22-src                 1.22.2-2ubuntu0.3

Ubuntu 22.04 LTS  
  golang-1.22                     1.22.2-2~22.04.2  
  golang-1.22-go                  1.22.2-2~22.04.2  
  golang-1.22-src                 1.22.2-2~22.04.2

Ubuntu 20.04 LTS  
  golang-1.22                     1.22.2-2~20.04.2  
  golang-1.22-go                  1.22.2-2~20.04.2  
  golang-1.22-src                 1.22.2-2~20.04.2

In general, a standard system update will make all the necessary changes.

References:  
  https://ubuntu.com/security/notices/USN-7081-1  
  CVE-2024-24791, CVE-2024-34155, CVE-2024-34156, CVE-2024-34158

Package Information:  
  https://launchpad.net/ubuntu/+source/golang-1.22/1.22.2-2ubuntu0.3  
  https://launchpad.net/ubuntu/+source/golang-1.22/1.22.2-2~22.04.2  
  https://launchpad.net/ubuntu/+source/golang-1.22/1.22.2-2~20.04.2

Ubuntu Security Notice USN-7081-1

Ubuntu Security Notice 7079-1 - Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

    ==========================================================================Ubuntu Security Notice USN-7079-1October 22, 2024webkit2gtk vulnerabilities==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 24.04 LTS- Ubuntu 22.04 LTSSummary:Several security issues were fixed in WebKitGTK.Software Description:- webkit2gtk: Web content engine library for GTK+Details:Several security issues were discovered in the WebKitGTK Web and JavaScriptengines. If a user were tricked into viewing a malicious website, a remoteattacker could exploit a variety of issues related to web browser security,including cross-site scripting attacks, denial of service attacks, andarbitrary code execution.Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 24.04 LTS  libjavascriptcoregtk-4.1-0      2.46.1-0ubuntu0.24.04.1  libjavascriptcoregtk-6.0-1      2.46.1-0ubuntu0.24.04.1  libwebkit2gtk-4.1-0             2.46.1-0ubuntu0.24.04.1  libwebkitgtk-6.0-4              2.46.1-0ubuntu0.24.04.1Ubuntu 22.04 LTS  libjavascriptcoregtk-4.0-18     2.46.1-0ubuntu0.22.04.3  libjavascriptcoregtk-4.1-0      2.46.1-0ubuntu0.22.04.3  libjavascriptcoregtk-6.0-1      2.46.1-0ubuntu0.22.04.3  libwebkit2gtk-4.0-37            2.46.1-0ubuntu0.22.04.3  libwebkit2gtk-4.1-0             2.46.1-0ubuntu0.22.04.3  libwebkitgtk-6.0-4              2.46.1-0ubuntu0.22.04.3This update uses a new upstream release, which includes additional bugfixes. After a standard system update you need to restart any applicationsthat use WebKitGTK, such as Epiphany, to make all the necessary changes.References:  https://ubuntu.com/security/notices/USN-7079-1  CVE-2024-40866, CVE-2024-44187Package Information:  https://launchpad.net/ubuntu/+source/webkit2gtk/2.46.1-0ubuntu0.24.04.1  https://launchpad.net/ubuntu/+source/webkit2gtk/2.46.1-0ubuntu0.22.04.3

Ubuntu Security Notice USN-7079-1

After eight months, one of the US’s most prominent crypto-crime investigators may finally be coming home.

For eight months, the criminal investigator who pioneered cryptocurrency tracing as a law enforcement technique has, in a bizarre twist of fate, been jailed in Nigeria facing charges of money laundering and tax evasion. Now he may finally be coming home.

On Wednesday in Abuja, a court ruled that criminal charges against Gambaryan, a Binance executive who previously served as an IRS criminal investigator for a decade, will be dropped on medical grounds as pressure from the US government has grown to secure Gambaryan's release.

Gambaryan was detained in February and later jailed after being invited to the country by Nigerian officials to discuss a dispute between the Nigerian government and Binance over its history of money laundering and the exchange's alleged role in devaluing the Nigerian national currency. He's since been held in the country's Kuje prison, where, according to his family and his attorneys, he's suffered acutely from a herniated disc in his spine that requires immediate surgery.

Despite the Nigerian court's decision to drop the charges against Gambaryan, first reported by Bloomberg News, Gambaryan is still in Nigeria and was returned to jail after the ruling, according to Patrick Hillman, a former Binance executive and colleague of Gambaryan's who has been involved with the lobbying effort to free him. “We’re all kind of waiting right now to hear that he’s on a plane, airborne, and headed home,” Hillman says. “Until we have verification of that, we’re all just clutching our shirt collars and waiting to make sure there are no other hiccups.”

A spokesperson for Gambaryan's family declined to comment, and Binance didn't immediately respond to a request for comment. The country's criminal case against Binance, despite Gambaryan's release, will continue, according to Reuters.

International pressure has steadily grown on Nigeria to release Gambaryan, whose health has visibly declined during his time in jail. In July, he attended a court hearing in a wheelchair. In September, a video captured him limping into court on a single crutch, pleading in vain for help from a Nigerian security guard.

Meanwhile, 16 members of Congress signed a letter to the White House calling for Gambaryan's case to be treated as a hostage situation. A resolution advanced in the House Foreign Affairs Committee called on the US to push for his release. Most recently, a group of state attorneys general similarly called on the White House to apply the necessary leverage to free Gambaryan.

Nigeria Drops Charges Against Tigran Gambaryan, Jailed Binance Exec and Former IRS Agent

Red Hat Security Advisory 2024-8359-03 - An update for the python39:3.9 and python39-devel:3.9 module is now available for Red Hat Enterprise Linux 8.

    The following advisory data is extracted from:https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8359.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Moderate: python39:3.9 and python39-devel:3.9 security updateAdvisory ID:        RHSA-2024:8359-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:8359Issue date:         2024-10-23Revision:           03CVE Names:          CVE-2024-6232====================================================================Summary: An update for the python39:3.9 and python39-devel:3.9 module is now available for Red Hat Enterprise Linux 8.Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as to various windowing systems.Security Fix(es):* python: cpython: tarfile: ReDos via excessive backtracking while parsing header values (CVE-2024-6232)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-6232References:https://access.redhat.com/security/updates/classification/#moderatehttps://bugzilla.redhat.com/show_bug.cgi?id=2309426

Red Hat Security Advisory 2024-8359-03

Red Hat Security Advisory 2024-8358-03 - An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Issues addressed include a privilege escalation vulnerability.

    The following advisory data is extracted from:https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8358.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: NetworkManager-libreswan security updateAdvisory ID:        RHSA-2024:8358-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:8358Issue date:         2024-10-23Revision:           03CVE Names:          CVE-2024-9050====================================================================Summary: An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:This package contains software for integrating the libreswan VPN software with NetworkManager and the GNOME desktopSecurity Fix(es):* NetworkManager-libreswan: Local privilege escalation via leftupdown (CVE-2024-9050)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-9050References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2313828

Red Hat Security Advisory 2024-8358-03

Red Hat Security Advisory 2024-8357-03 - An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Issues addressed include a privilege escalation vulnerability.

    The following advisory data is extracted from:https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8357.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: NetworkManager-libreswan security updateAdvisory ID:        RHSA-2024:8357-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:8357Issue date:         2024-10-23Revision:           03CVE Names:          CVE-2024-9050====================================================================Summary: An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:This package contains software for integrating the libreswan VPN software with NetworkManager and the GNOME desktopSecurity Fix(es):* NetworkManager-libreswan: Local privilege escalation via leftupdown (CVE-2024-9050)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-9050References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2313828

Red Hat Security Advisory 2024-8357-03

Red Hat Security Advisory 2024-8356-03 - An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Issues addressed include a privilege escalation vulnerability.

    The following advisory data is extracted from:https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8356.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: NetworkManager-libreswan security updateAdvisory ID:        RHSA-2024:8356-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:8356Issue date:         2024-10-23Revision:           03CVE Names:          CVE-2024-9050====================================================================Summary: An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:This package contains software for integrating the libreswan VPN software with NetworkManager and the GNOME desktopSecurity Fix(es):* NetworkManager-libreswan: Local privilege escalation via leftupdown (CVE-2024-9050)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-9050References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2313828

Red Hat Security Advisory 2024-8356-03

Red Hat Security Advisory 2024-8355-03 - An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.4 Telecommunications Update Service. Issues addressed include a privilege escalation vulnerability.

    The following advisory data is extracted from:https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8355.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: NetworkManager-libreswan security updateAdvisory ID:        RHSA-2024:8355-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:8355Issue date:         2024-10-23Revision:           03CVE Names:          CVE-2024-9050====================================================================Summary: An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.4 Telecommunications Update Service.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:This package contains software for integrating the libreswan VPN software with NetworkManager and the GNOME desktopSecurity Fix(es):* NetworkManager-libreswan: Local privilege escalation via leftupdown (CVE-2024-9050)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-9050References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2313828

Red Hat Security Advisory 2024-8355-03

Red Hat Security Advisory 2024-8354-03 - An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include a privilege escalation vulnerability.

    The following advisory data is extracted from:https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8354.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: NetworkManager-libreswan security updateAdvisory ID:        RHSA-2024:8354-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:8354Issue date:         2024-10-23Revision:           03CVE Names:          CVE-2024-9050====================================================================Summary: An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:This package contains software for integrating the libreswan VPN software with NetworkManager and the GNOME desktopSecurity Fix(es):* NetworkManager-libreswan: Local privilege escalation via leftupdown (CVE-2024-9050)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-9050References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2313828

Red Hat Security Advisory 2024-8354-03

Red Hat Security Advisory 2024-8353-03 - An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 8. Issues addressed include a privilege escalation vulnerability.

    The following advisory data is extracted from:https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_8353.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: NetworkManager-libreswan security updateAdvisory ID:        RHSA-2024:8353-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:8353Issue date:         2024-10-23Revision:           03CVE Names:          CVE-2024-9050====================================================================Summary: An update for NetworkManager-libreswan is now available for Red Hat Enterprise Linux 8.Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:This package contains software for integrating the libreswan VPN software with NetworkManager and the GNOME desktopSecurity Fix(es):* NetworkManager-libreswan: Local privilege escalation via leftupdown (CVE-2024-9050)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-9050References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2313828

Latest News