drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in nut
| Name: |
Denial of Service in nut |
|
| ID: |
USN-1456-1 |
|
| Distribution: |
Ubuntu |
|
| Plattformen: |
Ubuntu 10.04 LTS, Ubuntu 11.04, Ubuntu 11.10, Ubuntu 12.04 LTS |
|
| Datum: |
Fr, 1. Juni 2012, 13:29 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2944 |
|
| Applikationen: |
nut |
|
Originalnachricht |
--===============6421114637914007507==
Content-Type: multipart/signed; micalg="pgp-sha512";
protocol="application/pgp-signature";
boundary="=-z5zW+rwC8axchpGpNmC/"
--=-z5zW+rwC8axchpGpNmC/
Content-Type: text/plain; charset="UTF-8
Content-Transfer-Encoding: quoted-printable
==========================================================================
Ubuntu Security Notice USN-1456-1
May 31, 2012
nut vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.04 LTS
- Ubuntu 11.10
- Ubuntu 11.04
- Ubuntu 10.04 LTS
Summary:
Nut could be made to crash if it received specially crafted network
traffic.
Software Description:
- nut: Network UPS tools
Details:
Sebastian Pohle discovered that Nut did not properly validate its input
when receiving data over the network. If upsd was configured to allow
connections over the network, a remote attacker could exploit this to
cause a denial of service (application crash).
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 12.04 LTS:
nut-server 2.6.3-1ubuntu1.1
Ubuntu 11.10:
nut-server 2.6.1-2ubuntu2.1
Ubuntu 11.04:
nut 2.6.0-1ubuntu3.1
Ubuntu 10.04 LTS:
nut 2.4.3-1ubuntu3.2
In general, a standard system update will make all the necessary changes.
References:
http://www.ubuntu.com/usn/usn-1456-1
CVE-2012-2944
Package Information:
https://launchpad.net/ubuntu/+source/nut/2.6.3-1ubuntu1.1
https://launchpad.net/ubuntu/+source/nut/2.6.1-2ubuntu2.1
https://launchpad.net/ubuntu/+source/nut/2.6.0-1ubuntu3.1
https://launchpad.net/ubuntu/+source/nut/2.4.3-1ubuntu3.2
--Ó5zW+rwC8axchpGpNmC/
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part
Content-Transfer-Encoding: 7bit
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)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=tq2P
-----END PGP SIGNATURE-----
--=-z5zW+rwC8axchpGpNmC/--
--===============6421114637914007507==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
--
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
--===============6421114637914007507==--
|
|
|
|
