drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Zwei Probleme in Shadow (Aktualisierung)
Name: |
Zwei Probleme in Shadow (Aktualisierung) |
|
ID: |
USN-3276-3 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 12.04 ESM |
|
Datum: |
Di, 14. November 2017, 23:00 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6252
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2616 |
|
Applikationen: |
|
|
Update von: |
Zwei Probleme in Shadow |
|
Originalnachricht |
--===============5090232402749411613== Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="=-p4UQy0IzAMBeaZLZxT1H"
--=-p4UQy0IzAMBeaZLZxT1H Content-Type: text/plain; charset="UTF-8 Content-Transfer-Encoding: quoted-printable
========================================================================== Ubuntu Security Notice USN-3276-3 November 14, 2017
shadow vulnerability ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.04 ESM
Summary:
su could be made to crash or stop programs as an administrator.
Software Description: - shadow: system login tools
Details:
USN-3276-1 and USN-3276-2 fixed vulnerabilities in shadow. This update provides the corresponding update for Ubuntu 12.04 ESM.
Original advisory details:
Sebastian Krahmer discovered integer overflows in shadow utilities. A local attacker could possibly cause them to crash or potentially gain privileges via crafted input. (CVE-2016-6252)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 12.04 ESM: login 1:4.1.4.2+svn3283-3ubuntu5.2 passwd 1:4.1.4.2+svn3283-3ubuntu5.2
In general, a standard system update will make all the necessary changes.
References: https://www.ubuntu.com/usn/usn-3276-3 https://www.ubuntu.com/usn/usn-3276-1 CVE-2017-2616
--=-p4UQy0IzAMBeaZLZxT1H Content-Type: application/pgp-signature; name="signature.asc" Content-Description: This is a digitally signed message part Content-Transfer-Encoding: 7bit
-----BEGIN PGP SIGNATURE----- Version: GnuPG v2
iQIcBAABCAAGBQJaCyzUAAoJEEW851uECx9ppxMP/2amFwiDyhL3owekCG8uqrDZ r2Z6fVifyzQPstsGg2GoakiRkJ0BLoKgHpUjN2talf9etd/mXlFRt9QRfoyHeppZ r0Z9uNgkQeC4Y9zGpDuz4KIejobhTG7KTCRsj2s5DaEI5/NBFHH6vPxbwXgPTa7c 0+cT80xvdRahK0BewX48Mk6y1PwBtg3HhYLuMhD6DCTEu6gav8wrP5E8c9jn2yTq tlr43wtv64P0dNyksGtBclzw+1ln6DXv+p4UVFWTQRckCmM09ZejFet9/0SRZozf ySjw5qsPX/XzHx4UnfUI5lSvb6ZfcGjoE3mCcBnWsfUZFIhZhZYDwt9cKFDWVBgu NF0KfVTPZgB780n/bZzjP+1d7oYHgyXzLMU9vZbQQN0WKX9COmkd1tNfgargsWj5 UuXvVYs7RNlyabAbOnj4W5lqX/kioeVy4TMn4oGPEiBpDEZSpyr93Wny87UP28T6 RRHFNMY6RBdoudW1zepOtR5oFxPN1Imf8L5Rs4ccEJev2fRRRKk2JauA9JbLVIVW O/iJt82UB3/wlD0swsNTieFLPivf+gEScP/Xj0+UIbdrBjYSXUYKQUEPOapplm3h gxHJ5z32sigJAp1YknbA85rJfTUQVSt5Ymm1qh4wwid6nyK1kQbGOWCYUywn9c0Z xQO9s4RI/9x6B8H2buQh =cq79 -----END PGP SIGNATURE-----
--=-p4UQy0IzAMBeaZLZxT1H--
--===============5090232402749411613== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline
LS0gCnVidW50dS1zZWN1cml0eS1hbm5vdW5jZSBtYWlsaW5nIGxpc3QKdWJ1bnR1LXNlY3VyaXR5 LWFubm91bmNlQGxpc3RzLnVidW50dS5jb20KTW9kaWZ5IHNldHRpbmdzIG9yIHVuc3Vic2NyaWJl IGF0OiBodHRwczovL2xpc3RzLnVidW50dS5jb20vbWFpbG1hbi9saXN0aW5mby91YnVudHUtc2Vj dXJpdHktYW5ub3VuY2UK
--===============5090232402749411613==--
|
|
|
|