drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in nut
Name: |
Denial of Service in nut |
|
ID: |
USN-1456-1 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 10.04 LTS, Ubuntu 11.04, Ubuntu 11.10, Ubuntu 12.04 LTS |
|
Datum: |
Fr, 1. Juni 2012, 13:29 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2944 |
|
Applikationen: |
nut |
|
Originalnachricht |
--===============6421114637914007507== Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="=-z5zW+rwC8axchpGpNmC/"
--=-z5zW+rwC8axchpGpNmC/ Content-Type: text/plain; charset="UTF-8 Content-Transfer-Encoding: quoted-printable
========================================================================== Ubuntu Security Notice USN-1456-1 May 31, 2012
nut vulnerability ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.04 LTS - Ubuntu 11.10 - Ubuntu 11.04 - Ubuntu 10.04 LTS
Summary:
Nut could be made to crash if it received specially crafted network traffic.
Software Description: - nut: Network UPS tools
Details:
Sebastian Pohle discovered that Nut did not properly validate its input when receiving data over the network. If upsd was configured to allow connections over the network, a remote attacker could exploit this to cause a denial of service (application crash).
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 12.04 LTS: nut-server 2.6.3-1ubuntu1.1
Ubuntu 11.10: nut-server 2.6.1-2ubuntu2.1
Ubuntu 11.04: nut 2.6.0-1ubuntu3.1
Ubuntu 10.04 LTS: nut 2.4.3-1ubuntu3.2
In general, a standard system update will make all the necessary changes.
References: http://www.ubuntu.com/usn/usn-1456-1 CVE-2012-2944
Package Information: https://launchpad.net/ubuntu/+source/nut/2.6.3-1ubuntu1.1 https://launchpad.net/ubuntu/+source/nut/2.6.1-2ubuntu2.1 https://launchpad.net/ubuntu/+source/nut/2.6.0-1ubuntu3.1 https://launchpad.net/ubuntu/+source/nut/2.4.3-1ubuntu3.2
--Ó5zW+rwC8axchpGpNmC/ Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux)
iQIcBAABCgAGBQJPx+bMAAoJEFHb3FjMVZVziAYQAJuHTpYojGNgDgYgiHPdyR01 Y8pucPQtIOkez86pD1Vw5dD8tMfCvZKfdG67JlSfTuXityLPgHu95ZsOldACVoVC apTCH8mnsKDLHUja89qG3nJcAkHBk6jmZOT2Ohho+YYbPfbQvDLiqui3rcjV05VZ 0Db7ueLKm3Iu0QpO4hupFr0V3ztgohCN6qn40SqoFxSSExKmg4AEkZcFJhbnSl6G bMmfMDjrzx6jMew1ZoPS2L/bB1QjKfE1VJzPu155i+jLK4vz2R3XAeKENaPomKc5 vnHZhh11MfR9K0WAF7ugHsoLQmFqOyk+Dt61kmW2LXfNvLCoSD6rrJjkCF55YUTS +16f6U8usi2Yqw8tTKIkUu64xL9QnEWj71UHeMQQ3pju8YYeOWZyeKe5E6FjV3ar tpiclLUOqigJ/9c44sKsXSWzxLKlBIhkzsKXOo5RRLYoQhwT3n5ZEDeiY/F/3tc0 wjC4KP4utBP/1jK9WZltJ9v9UbFpMoj+7nTu0JT1YYBRipWPhFgTjErSeQkPgOQS fE9vR36GSXtIUsPqlOxC2zaY16gKJLlntaX6mqF5T/78xhAvc0ixHNkSGcz6zYDX kekBUyueoCZCwDCsJ4yqQMB3S48kLqKdcxq0tbhh+qpHJMhgBGEnlfXfQ3tF+RS2 auh7vNaxpHzJXnmXWT6E =tq2P -----END PGP SIGNATURE-----
--=-z5zW+rwC8axchpGpNmC/--
--===============6421114637914007507== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline
-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
--===============6421114637914007507==--
|
|
|
|