Synopsys warns of a new prompt injection hack involving a security vulnerability in EmailGPT, a popular AI email…

Synopsys warns of a new prompt injection hack involving a security vulnerability in EmailGPT, a popular AI email assistant. Learn how a security flaw in EmailGPT could allow hackers to steal your data or cause financial losses. Discover what you can do to protect yourself and why security is crucial in AI-powered tools.

A security vulnerability discovered by Synopsys’ Cybersecurity Research Center (CyRC) has exposed a potential pitfall for users of EmailGPT, a popular AI-powered email writing assistant and Google Chrome extension.

This vulnerability, tracked as CVE-2024-5184 and dubbed prompt injection, could allow malicious threat actors to manipulate the service and potentially compromise sensitive information.

****What is EmailGPT?****

EmailGPT leverages OpenAI’s GPT models to assist users in crafting emails within Gmail. Users can receive AI-generated suggestions for composing emails more efficiently by providing prompts and context. However, the recent discovery highlights a potential security flaw in this functionality.

****The Prompt Injection Threat****

EmailGPT uses an API service that allows a malicious user to inject a direct prompt and take over the service logic. Attackers can exploit this by forcing the AI service to leak standard system prompts or execute unwanted prompts.

When submitting a malicious prompt, the system provides the requested data, making it vulnerable to exploitation by anyone having access to the service. The vulnerability has a CVSS score of 6.5, indicating medium severity.

****Possible Dangers****

A malicious user could create a prompt that injects unintended functionality, potentially leading to data extraction, spam campaigns using compromised accounts, and generating misleading email content, contributing to disinformation campaigns. Apart from causing intellectual property leakage, this vulnerability can lead to denial-of-service, and financial loss when exploited. 

As per Synopsys’ blog post, researchers reached out to the developers of EmailGPT before publicizing the details, adhering to their responsible disclosure policy, but did not receive a response yet. Researchers recommend immediately removing EmailGPT from any installations as no workaround is currently available.

Users should stay informed about updates and patches to ensure continued secure use of the service. As AI technology continues to evolve, vigilance and robust security practices will be crucial to mitigate potential risks.

> _“The CyRC reached out to the developers but has not received a response within the 90-day timeline dictated by our responsible disclosure policy. The CyRC recommends removing the applications from networks immediately.”_
> 
> Synopsys

Patrick Harr, CEO at Pleasanton, Calif.- based SlashNext Email Security commented on the issue and emphasised the importance of strong governance and security measures for AI models to prevent vulnerabilities and exploits, stating that businesses should require proof of security from AI model suppliers before integrating them into their operations.

_“_This latest research by the Synopsys Cybersecurity Research Center further highlights the importance of strong governance on building, securing and red-teaming the AI models themselves. At its core, AI is code that can be exploited like any other code and the same processes need to be put in place to secure that code to prevent these unwanted prompt exploits,_“_ Patrik said. 

_“_Security and governance of the AI models are paramount as part of the culture and hygiene of companies building and proving the AI models either through applications or APIs. Customers particularly businesses need to demand proof of how the suppliers of these models are securing themselves including data access BEFORE they incorporate them into their business,_“_ he added.

****REALTED TOPICS** **

1.  New LLMjacking Attack Lets Hackers Hijack AI Models
2.  Flaws Exposed Hugging Face to AI Supply Chain Attacks
3.  AI Generated Fake Obituary Websites Target Grieving Users
4.  AI-Powered Scams, Human Trafficking Fuel Global Crime Surge
5.  ShadowRay Campaign Targets Ray AI Framework in Global Attack

New EmailGPT Flaw Puts User Data at Risk: Remove the Extension NOW

Ubuntu Security Notice 6814-1 - Xiantong Hou discovered that libvpx did not properly handle certain malformed media files. If an application using libvpx opened a specially crafted file, a remote attacker could cause a denial of service, or possibly execute arbitrary code.

==========================================================================  
Ubuntu Security Notice USN-6814-1  
June 06, 2024

libvpx vulnerability  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS  
- Ubuntu 23.10  
- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS

Summary:

libvpx could be made to crash or run programs if it opened a specially  
crafted file.

Software Description:  
- libvpx: VP8 and VP9 video codec

Details:

Xiantong Hou discovered that libvpx did not properly handle certain  
malformed media files. If an application using libvpx opened a specially  
crafted file, a remote attacker could cause a denial of service, or  
possibly execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 24.04 LTS  
   libvpx9                         1.14.0-1ubuntu2.1

Ubuntu 23.10  
   libvpx7                         1.12.0-1ubuntu2.1

Ubuntu 22.04 LTS  
   libvpx7                         1.11.0-2ubuntu2.3

Ubuntu 20.04 LTS  
   libvpx6                         1.8.2-1ubuntu0.3

In general, a standard system update will make all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-6814-1  
   CVE-2024-5197

Package Information:  
   https://launchpad.net/ubuntu/+source/libvpx/1.14.0-1ubuntu2.1  
   https://launchpad.net/ubuntu/+source/libvpx/1.12.0-1ubuntu2.1  
   https://launchpad.net/ubuntu/+source/libvpx/1.11.0-2ubuntu2.3  
   https://launchpad.net/ubuntu/+source/libvpx/1.8.2-1ubuntu0.3

Ubuntu Security Notice USN-6814-1

Ubuntu Security Notice 6813-1 - It was discovered that the Hotspot component of OpenJDK 21 incorrectly handled certain exceptions with specially crafted long messages. An attacker could possibly use this issue to cause a denial of service. It was discovered that OpenJDK 21 incorrectly performed reverse DNS query under certain circumstances in the Networking/HTTP client component. An attacker could possibly use this issue to obtain sensitive information.

==========================================================================  
Ubuntu Security Notice USN-6813-1  
June 06, 2024

openjdk-21 vulnerabilities  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 23.10  
- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS

Summary:

Several security issues were fixed in OpenJDK 21.

Software Description:  
- openjdk-21: Open Source Java implementation

Details:

It was discovered that the Hotspot component of OpenJDK 21 incorrectly  
handled certain exceptions with specially crafted long messages. An  
attacker could possibly use this issue to cause a denial of service.  
(CVE-2024-21011)

It was discovered that OpenJDK 21 incorrectly performed reverse DNS  
query under certain circumstances in the Networking/HTTP client  
component. An attacker could possibly use this issue to obtain sensitive  
information. (CVE-2024-21012)

Vladimir Kondratyev discovered that the Hotspot component of OpenJDK 21  
incorrectly handled address offset calculations in the C1 compiler. An  
attacker could possibly use this issue to cause a denial of service  
or execute arbitrary code. (CVE-2024-21068)

It was discovered that the Hotspot component of OpenJDK 21 incorrectly  
handled array accesses in the C2 compiler. An attacker could possibly use  
this issue to cause a denial of service or execute arbitrary code.  
(CVE-2024-21094)

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 23.10  
   openjdk-21-jdk                  21.0.3+9-1ubuntu1~23.10.1  
   openjdk-21-jdk-headless         21.0.3+9-1ubuntu1~23.10.1  
   openjdk-21-jre                  21.0.3+9-1ubuntu1~23.10.1  
   openjdk-21-jre-headless         21.0.3+9-1ubuntu1~23.10.1  
   openjdk-21-jre-zero             21.0.3+9-1ubuntu1~23.10.1

Ubuntu 22.04 LTS  
   openjdk-21-jdk                  21.0.3+9-1ubuntu1~22.04.1  
   openjdk-21-jdk-headless         21.0.3+9-1ubuntu1~22.04.1  
   openjdk-21-jre                  21.0.3+9-1ubuntu1~22.04.1  
   openjdk-21-jre-headless         21.0.3+9-1ubuntu1~22.04.1  
   openjdk-21-jre-zero             21.0.3+9-1ubuntu1~22.04.1

Ubuntu 20.04 LTS  
   openjdk-21-jdk                  21.0.3+9-1ubuntu1~20.04.1  
   openjdk-21-jdk-headless         21.0.3+9-1ubuntu1~20.04.1  
   openjdk-21-jre                  21.0.3+9-1ubuntu1~20.04.1  
   openjdk-21-jre-headless         21.0.3+9-1ubuntu1~20.04.1  
   openjdk-21-jre-zero             21.0.3+9-1ubuntu1~20.04.1

This update uses a new upstream release, which includes additional bug  
fixes. After a standard system update you need to restart any Java  
applications to make all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-6813-1  
   CVE-2024-21011, CVE-2024-21012, CVE-2024-21068, CVE-2024-21094

Package Information:  
   https://launchpad.net/ubuntu/+source/openjdk-21/21.0.3+9-1ubuntu1~23.10.1  
   https://launchpad.net/ubuntu/+source/openjdk-21/21.0.3+9-1ubuntu1~22.04.1  
   https://launchpad.net/ubuntu/+source/openjdk-21/21.0.3+9-1ubuntu1~20.04.1

Ubuntu Security Notice USN-6813-1

Debian Linux Security Advisory 5705-1 - A use-after-free was discovered in tinyproxy, a lightweight, non-caching, optionally anonymizing HTTP proxy, which could result in denial of service.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5705-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffJune 05, 2024                         https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : tinyproxyCVE ID         : CVE-2023-49606A use-after-free was discovered in tinyproxy, a lightweight, non-caching,optionally anonymizing HTTP proxy, which could result in denial ofservice.For the stable distribution (bookworm), this problem has been fixed inversion 1.11.1-2.1+deb12u1.We recommend that you upgrade your tinyproxy packages.For the detailed security status of tinyproxy please refer toits security tracker page at:https://security-tracker.debian.org/tracker/tinyproxyFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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euKq-----END PGP SIGNATURE-----

Debian Security Advisory 5705-1

Ubuntu Security Notice 6567-2 - USN-6567-1 fixed vulnerabilities QEMU. The fix for CVE-2023-2861 was too restrictive and introduced a behavior change leading to a regression in certain environments. This update fixes the problem. Gaoning Pan and Xingwei Li discovered that QEMU incorrectly handled the USB xHCI controller device. A privileged guest attacker could possibly use this issue to cause QEMU to crash, leading to a denial of service. Various other issues were also addressed.

    ==========================================================================Ubuntu Security Notice USN-6567-2June 06, 2024qemu regression==========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 22.04 LTS- Ubuntu 20.04 LTSSummary:USN-6567-1 introduced a regression in QEMU.Software Description:- qemu: Machine emulator and virtualizerDetails:USN-6567-1 fixed vulnerabilities QEMU. The fix for CVE-2023-2861 was toorestrictive and introduced a behaviour change leading to a regression incertain environments. This update fixes the problem.Original advisory details:  Gaoning Pan and Xingwei Li discovered that QEMU incorrectly handled the  USB xHCI controller device. A privileged guest attacker could possibly use  this issue to cause QEMU to crash, leading to a denial of service. This  issue only affected Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2020-14394)   It was discovered that QEMU incorrectly handled the TCG Accelerator. A  local attacker could use this issue to cause QEMU to crash, leading to a  denial of service, or possibly execute arbitrary code and esclate  privileges. This issue only affected Ubuntu 20.04 LTS. (CVE-2020-24165)   It was discovered that QEMU incorrectly handled the Intel HD audio device.  A malicious guest attacker could use this issue to cause QEMU to crash,  leading to a denial of service. This issue only affected Ubuntu 22.04 LTS.  (CVE-2021-3611)   It was discovered that QEMU incorrectly handled the ATI VGA device. A  malicious guest attacker could use this issue to cause QEMU to crash,  leading to a denial of service. This issue only affected Ubuntu 20.04 LTS.  (CVE-2021-3638)   It was discovered that QEMU incorrectly handled the VMWare paravirtual RDMA  device. A malicious guest attacker could use this issue to cause QEMU to  crash, leading to a denial of service. (CVE-2023-1544)   It was discovered that QEMU incorrectly handled the 9p passthrough  filesystem. A malicious guest attacker could possibly use this issue to  open special files and escape the exported 9p tree. This issue only  affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 23.04.  (CVE-2023-2861)   It was discovered that QEMU incorrectly handled the virtual crypto device.  A malicious guest attacker could use this issue to cause QEMU to crash,  leading to a denial of service, or possibly execute arbitrary code. This  issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 23.04.  (CVE-2023-3180)   It was discovered that QEMU incorrectly handled the built-in VNC server.  A remote authenticated attacker could possibly use this issue to cause QEMU  to stop responding, resulting in a denial of service. This issue only  affected Ubuntu 22.04 LTS and Ubuntu 23.04. (CVE-2023-3255)   It was discovered that QEMU incorrectly handled net device hot-unplugging.  A malicious guest attacker could use this issue to cause QEMU to crash,  leading to a denial of service. This issue only affected Ubuntu 22.04 LTS  and Ubuntu 23.04. (CVE-2023-3301)   It was discovered that QEMU incorrectly handled the built-in VNC server.  A remote attacker could possibly use this issue to cause QEMU to crash,  resulting in a denial of service. This issue only affected Ubuntu 20.04  LTS, Ubuntu 22.04 LTS, and Ubuntu 23.04. (CVE-2023-3354)   It was discovered that QEMU incorrectly handled NVME devices. A malicious  guest attacker could use this issue to cause QEMU to crash, leading to a  denial of service. This issue only affected Ubuntu 23.10. (CVE-2023-40360)   It was discovered that QEMU incorrectly handled NVME devices. A malicious  guest attacker could use this issue to cause QEMU to crash, leading to a  denial of service, or possibly obtain sensitive information. This issue  only affected Ubuntu 23.10. (CVE-2023-4135)   It was discovered that QEMU incorrectly handled SCSI devices. A malicious  guest attacker could use this issue to cause QEMU to crash, leading to a  denial of service. This issue only affected Ubuntu 23.04 and Ubuntu 23.10.  (CVE-2023-42467)   It was discovered that QEMU incorrectly handled certain disk offsets. A  malicious guest attacker could possibly use this issue to gain control of  the host in certain nested virtualization scenarios. (CVE-2023-5088)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 22.04 LTS   qemu-system                     1:6.2+dfsg-2ubuntu6.21   qemu-system-arm                 1:6.2+dfsg-2ubuntu6.21   qemu-system-mips                1:6.2+dfsg-2ubuntu6.21   qemu-system-misc                1:6.2+dfsg-2ubuntu6.21   qemu-system-ppc                 1:6.2+dfsg-2ubuntu6.21   qemu-system-s390x               1:6.2+dfsg-2ubuntu6.21   qemu-system-sparc               1:6.2+dfsg-2ubuntu6.21   qemu-system-x86                 1:6.2+dfsg-2ubuntu6.21   qemu-system-x86-microvm         1:6.2+dfsg-2ubuntu6.21   qemu-system-x86-xen             1:6.2+dfsg-2ubuntu6.21Ubuntu 20.04 LTS   qemu-system                     1:4.2-3ubuntu6.29   qemu-system-arm                 1:4.2-3ubuntu6.29   qemu-system-mips                1:4.2-3ubuntu6.29   qemu-system-misc                1:4.2-3ubuntu6.29   qemu-system-ppc                 1:4.2-3ubuntu6.29   qemu-system-s390x               1:4.2-3ubuntu6.29   qemu-system-sparc               1:4.2-3ubuntu6.29   qemu-system-x86                 1:4.2-3ubuntu6.29   qemu-system-x86-microvm         1:4.2-3ubuntu6.29   qemu-system-x86-xen             1:4.2-3ubuntu6.29After a standard system update you need to restart all QEMU virtualmachines to make all the necessary changes.References:   https://ubuntu.com/security/notices/USN-6567-2   https://ubuntu.com/security/notices/USN-6567-1   https://launchpad.net/bugs/2065579Package Information:   https://launchpad.net/ubuntu/+source/qemu/1:6.2+dfsg-2ubuntu6.21   https://launchpad.net/ubuntu/+source/qemu/1:4.2-3ubuntu6.29

Ubuntu Security Notice USN-6567-2

Red Hat Security Advisory 2024-3701-03 - An update for nghttp2 is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Issues addressed include a denial of service vulnerability.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3701.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Moderate: nghttp2 security updateAdvisory ID:        RHSA-2024:3701-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:3701Issue date:         2024-06-06Revision:           03CVE Names:          CVE-2024-28182====================================================================Summary: An update for nghttp2 is now available for Red Hat Enterprise Linux 8.8 Extended Update Support.Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 (HTTP/2) protocol in C.Security Fix(es):* nghttp2: CONTINUATION frames DoS (CVE-2024-28182,VU#421644.5)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2024-28182References:https://access.redhat.com/security/updates/classification/#moderatehttps://bugzilla.redhat.com/show_bug.cgi?id=2268639

Red Hat Security Advisory 2024-3701-03

Red Hat Security Advisory 2024-3685-03 - An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 8. Issues addressed include a denial of service vulnerability.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3685.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Moderate: java-1.8.0-ibm security updateAdvisory ID:        RHSA-2024:3685-03Product:            Red Hat Enterprise LinuxAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:3685Issue date:         2024-06-06Revision:           03CVE Names:          CVE-2023-38264====================================================================Summary: An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 8.Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:IBM Java SE version 8 includes the IBM Java Runtime Environment and the IBM Java Software Development Kit.This update upgrades IBM Java SE 8 to version 8 SR8-FP15.Security Fix(es):* IBM JDK: Object Request Broker (ORB) denial of service (CVE-2023-38264)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2023-38264References:https://access.redhat.com/security/updates/classification/#moderatehttps://bugzilla.redhat.com/show_bug.cgi?id=2279963

Red Hat Security Advisory 2024-3685-03

Red Hat Security Advisory 2024-3680-03 - Red Hat OpenShift Service Mesh Containers for 2.4.8. Issues addressed include a denial of service vulnerability.

    The following advisory data is extracted from:https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_3680.jsonRed Hat officially shut down their mailing list notifications October 10, 2023.  Due to this, Packet Storm has recreated the below data as a reference point to raise awareness.  It must be noted that due to an inability to easily track revision updates without crawling Red Hat's archive, these advisories are single notifications and we strongly suggest that you visit the Red Hat provided links to ensure you have the latest information available if the subject matter listed pertains to your environment.- Packet Storm Staff====================================================================Red Hat Security AdvisorySynopsis:           Important: Red Hat OpenShift Service Mesh Containers for 2.4.8 security updateAdvisory ID:        RHSA-2024:3680-03Product:            Red Hat OpenShift Service MeshAdvisory URL:       https://access.redhat.com/errata/RHSA-2024:3680Issue date:         2024-06-06Revision:           03CVE Names:          CVE-2023-45288====================================================================Summary: Red Hat OpenShift Service Mesh Containers for 2.4.8Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.Description:Red Hat OpenShift Service Mesh is Red Hat's distribution of the Istio service mesh project, tailored for installation into an OpenShift Container Platform installation.Security Fix(es):* golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS (CVE-2023-45288)For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.Solution:https://access.redhat.com/articles/11258CVEs:CVE-2023-45288References:https://access.redhat.com/security/updates/classification/#importanthttps://bugzilla.redhat.com/show_bug.cgi?id=2268273

Red Hat Security Advisory 2024-3680-03

Debian Linux Security Advisory 5704-1 - Multiple security issues were discovered in Pillow, a Python imaging library, which could result in denial of service or the execution of arbitrary code if malformed images are processed.

    -----BEGIN PGP SIGNED MESSAGE-----Hash: SHA512- -------------------------------------------------------------------------Debian Security Advisory DSA-5704-1                   security@debian.orghttps://www.debian.org/security/                       Moritz MuehlenhoffJune 05, 2024                         https://www.debian.org/security/faq- -------------------------------------------------------------------------Package        : pillowCVE ID         : CVE-2023-44271 CVE-2023-50447 CVE-2024-28219Multiple security issues were discovered in Pillow, a Python imaginglibrary, which could result in denial of service or the execution ofarbitrary code if malformed images are processed.For the oldstable distribution (bullseye), these problems have been fixedin version 8.1.2+dfsg-0.3+deb11u2.For the stable distribution (bookworm), these problems have been fixed inversion 9.4.0-1.1+deb12u1.We recommend that you upgrade your pillow packages.For the detailed security status of pillow please refer toits security tracker page at:https://security-tracker.debian.org/tracker/pillowFurther information about Debian Security Advisories, how to applythese updates to your system and frequently asked questions can befound at: https://www.debian.org/security/Mailing list: debian-security-announce@lists.debian.org-----BEGIN PGP SIGNATURE-----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oUWM-----END PGP SIGNATURE-----

Debian Security Advisory 5704-1

Ubuntu Security Notice 6809-1 - It was discovered that BlueZ could be made to dereference invalid memory. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 22.04 LTS. It was discovered that BlueZ could be made to write out of bounds. If a user were tricked into connecting to a malicious device, an attacker could possibly use this issue to cause a denial of service or execute arbitrary code.

==========================================================================  
Ubuntu Security Notice USN-6809-1  
June 05, 2024

bluez vulnerabilities  
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 22.04 LTS  
- Ubuntu 20.04 LTS  
- Ubuntu 18.04 LTS  
- Ubuntu 16.04 LTS

Summary:

Several security issues were fixed in BlueZ.

Software Description:  
- bluez: Bluetooth tools and daemons

Details:

It was discovered that BlueZ could be made to dereference invalid memory.  
An attacker could possibly use this issue to cause a denial of service.  
This issue only affected Ubuntu 22.04 LTS. (CVE-2022-3563)

It was discovered that BlueZ could be made to write out of bounds. If a  
user were tricked into connecting to a malicious device, an attacker could  
possibly use this issue to cause a denial of service or execute arbitrary  
code. (CVE-2023-27349)

Update instructions:

The problem can be corrected by updating your system to the following  
package versions:

Ubuntu 22.04 LTS  
   bluez                           5.64-0ubuntu1.3  
   bluez-tests                     5.64-0ubuntu1.3  
   libbluetooth3                   5.64-0ubuntu1.3

Ubuntu 20.04 LTS  
   bluez                           5.53-0ubuntu3.8  
   libbluetooth3                   5.53-0ubuntu3.8

Ubuntu 18.04 LTS  
   bluez                           5.48-0ubuntu3.9+esm2  
                                   Available with Ubuntu Pro  
   libbluetooth3                   5.48-0ubuntu3.9+esm2  
                                   Available with Ubuntu Pro

Ubuntu 16.04 LTS  
   bluez                           5.37-0ubuntu5.3+esm4  
                                   Available with Ubuntu Pro  
   libbluetooth3                   5.37-0ubuntu5.3+esm4  
                                   Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:  
   https://ubuntu.com/security/notices/USN-6809-1  
   CVE-2022-3563, CVE-2023-27349

Package Information:  
   https://launchpad.net/ubuntu/+source/bluez/5.64-0ubuntu1.3  
   https://launchpad.net/ubuntu/+source/bluez/5.53-0ubuntu3.8

Tag

#dos