drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Zwei Probleme in SpiderMonkey
Name: |
Zwei Probleme in SpiderMonkey |
|
ID: |
USN-5494-1 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 22.04 LTS |
|
Datum: |
Mo, 27. Juni 2022, 22:22 |
|
Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28285
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31740 |
|
Applikationen: |
SpiderMonkey |
|
Originalnachricht |
--===============4571972693611780009== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="FCuugMFkClbJLl1L" Content-Disposition: inline
--FCuugMFkClbJLl1L Content-Type: text/plain; charset=us-ascii Content-Disposition: inline
========================================================================== Ubuntu Security Notice USN-5494-1 June 27, 2022
mozjs91 vulnerabilities ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 22.04 LTS
Summary:
Several security issues were fixed in SpiderMonkey JavaScript Library.
Software Description: - mozjs91: SpiderMonkey JavaScript library
Details:
It was discovered that SpiderMonkey JavaScript Library incorrectly generated certain assembly code. An remote attacker could possibly use this issue to cause a crash or expose sensitive information. (CVE-2022-28285)
It was discovered that SpiderMonkey JavaScript Library incorrectly generated certain assembly code. An remote attacker could possibly use this issue to cause a crash. (CVE-2022-31740)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 22.04 LTS: libmozjs-91-0 91.10.0-0ubuntu1
After a standard system update you need to restart any application that use SpiderMonkey JavaScript Library to make all the necessary changes.
References: https://ubuntu.com/security/notices/USN-5494-1 CVE-2022-28285, CVE-2022-31740, https://launchpad.net/bugs/1976260, https://launchpad.net/bugs/1978961
Package Information: https://launchpad.net/ubuntu/+source/mozjs91/91.10.0-0ubuntu1
--FCuugMFkClbJLl1L Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEEf+ebRFcoyOoAQoOeRbznW4QLH2kFAmK5sCgACgkQRbznW4QL H2mPMA//W6eTWs5n9IT8yABCdU/OHcJjwrgTE/HKpIJJ3bUE65BmSlMf5MsFV6MD u2xsx4XZsJTMpz4X1RreSvlkJyw/aAI7mKAUJVzxvwvKSaFa2BZj/KURaKfjosbc omR/moILmg8VNhdtqUnLOEWbmzZiblw1E87G+vvO0UdGTnqXAPOF8w72rENwguBf ruZP4+OyjaXCKALI5Ya3rxkYnu1pUnVnRs3mAymeYvTEEPWTsPjGyA7XkKKJR407 ielwYIo8bqeFgopd2F07yoVhmZwN0fYGYovdjpl46dbRSw/zVj2dcvvWtqx4VvAq FAaHsN8/cFmhTpVl5V5pulw5aJkzTBfcav0Sya8w6sTPVrv1GQh6dKA7Yibns2VQ R6I1qI5A7Gg+EZEhUdfyjO86mQHTE2pIkOXObUTtacB67mlQYPiJDj84TS0ZWdEk /0N4HQiOa8g6XCL7mFsRg6H2j5bJ9fFS7+IxHJ/LC8J+3x3djRrJIxCXsjQI2B/e dXElr/T4eeVYD6lqS8gNFteyI2hChIKP+3HzouFZGGJ4t8bh3SXDR9LO1niLtU9i RPZSPvya3jHh0elhR0OQQF6IX5C260gOrwIHoeijrkq8Ddw4QZQDChRUgYIlSwWI +lxyN/oshJsbZIwnoxQ7ma6eNfxL+zrjAprUtttmnozLChpHhGc= =QbJD -----END PGP SIGNATURE-----
--FCuugMFkClbJLl1L--
--===============4571972693611780009== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline
--===============4571972693611780009==--
|
|
|
|