drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in NSS (Aktualisierung)
Name: |
Denial of Service in NSS (Aktualisierung) |
|
ID: |
USN-4203-2 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 12.04 ESM, Ubuntu 14.04 ESM |
|
Datum: |
Mi, 27. November 2019, 23:04 |
|
Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11745 |
|
Applikationen: |
NSS |
|
Update von: |
Denial of Service in NSS |
|
Originalnachricht |
--===============3202848665819906553== Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="LQksG6bCIzRHxTLp" Content-Disposition: inline
--LQksG6bCIzRHxTLp Content-Type: text/plain; charset=us-ascii Content-Disposition: inline
========================================================================== Ubuntu Security Notice USN-4203-2 November 27, 2019
nss vulnerability ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 14.04 ESM - Ubuntu 12.04 ESM
Summary:
NSS could be made to crash or run programs if it received specially crafted input.
Software Description: - nss: Network Security Service library
Details:
USN-4203-1 fixed a vulnerability in NSS. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM.
Original advisory details:
It was discovered that NSS incorrectly handled certain memory operations. A remote attacker could use this issue to cause NSS to crash, resulting in a denial of service, or possibly execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 14.04 ESM: libnss3 2:3.28.4-0ubuntu0.14.04.5+esm2
Ubuntu 12.04 ESM: libnss3 2:3.28.4-0ubuntu0.12.04.5
After a standard system update you need to restart any applications that use NSS, such as Evolution, to make all the necessary changes.
References: https://usn.ubuntu.com/4203-2 https://usn.ubuntu.com/4203-1 CVE-2019-11745
--LQksG6bCIzRHxTLp Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1
iQIcBAEBAgAGBQJd3tEGAAoJEEW851uECx9p1T8P/jMpVlWppoSrltylIy8xGoRh z/ZjCOlxAwGs4rTAzBDmR0QQaLvaANvOn3x2Wr9MQ51VSeY0GLj0My0LaBpi9XMW nRTRrzSktAvdjZ7eT3ZlOTWRYU0Cq7b+ofGlE5iu3gYLr1CFQZ2FnDTWs66p/l7k HfWINyFnbnLWUbajtzCCof5iLGoJ9IJDojJ4Ia3Lg/2ScD5KdnWJPCHfZjjErayb 09cdV0G7vh3zSzLZWfBJG5cTINXxFA1cI4lV0eaGeExql0Ds9M205/krcFvgtuJk BLGFKLjuKPUM8RcKT+rlDncmC4zJj+mlq753p2Kp4a0cxjGwX6U2ktrbhT/J9Csd C+p6efGcIsltaLjf9I9FF/jx1lGhdqXjUiRAu+11QBObAbsRCwIzhcraPqFlr81p JSmCVataOItTcmu8+EPyDaaiCdMh3qX15Ob4fQozRV+4RRWS5MJqh8Sp7iU3torZ nAk8QZZYGc8/cjL7IpX+bGY3FcUv0cvM5gjoU3Aq832Wie7wmCogu2Uh9+JUJ9hk OhaLync3rzX0q0YyPhOEJ8zu647r2vyuUe53ZvmTIzmIgJOsEhdWAhff+TEEJGo3 UHSlI8TpR/dTFuz3p9A3wNx6d/ZSoCi39uUNIMsvpCaA0C2OOfxoGQ+rf8MZq2Fe PGAd9u8wuITj2i35P8PU =xjtW -----END PGP SIGNATURE-----
--LQksG6bCIzRHxTLp--
--===============3202848665819906553== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline
-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
|
|
|
|