drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mehrere Probleme in LibBPF
| Name: |
Mehrere Probleme in LibBPF |
|
| ID: |
USN-5759-1 |
|
| Distribution: |
Ubuntu |
|
| Plattformen: |
Ubuntu 22.04 LTS, Ubuntu 22.10 |
|
| Datum: |
Di, 6. Dezember 2022, 06:45 |
|
| Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45940
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3606
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3533
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45941
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3534 |
|
| Applikationen: |
LibBPF |
|
Originalnachricht |
--===============7430509192986682338==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="ch3c5svntljyzd2m"
Content-Disposition: inline
--ch3c5svntljyzd2m
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
==========================================================================
Ubuntu Security Notice USN-5759-1
December 05, 2022
libbpf vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 22.10
- Ubuntu 22.04 LTS
Summary:
Several security issues were fixed in LibBPF.
Software Description:
- libbpf: eBPF helper library (development files)
Details:
It was discovered that LibBPF incorrectly handled certain memory operations
under certain circumstances. An attacker could possibly use this issue to
cause LibBPF to crash, resulting in a denial of service, or possibly
execute arbitrary code. This issue only affected Ubuntu 22.10.
(CVE-2021-45940, CVE-2021-45941, CVE-2022-3533)
It was discovered that LibBPF incorrectly handled certain memory operations
under certain circumstances. An attacker could possibly use this issue to
cause LibBPF to crash, resulting in a denial of service, or possibly
execute arbitrary code. (CVE-2022-3534, CVE-2022-3606)
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 22.10:
libbpf-dev 1:0.8.0-1ubuntu22.10.1
Ubuntu 22.04 LTS:
libbpf-dev 1:0.5.0-1ubuntu22.04.1
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-5759-1
CVE-2021-45940, CVE-2021-45941, CVE-2022-3533, CVE-2022-3534,
CVE-2022-3606
Package Information:
https://launchpad.net/ubuntu/+source/libbpf/0.8.0-1ubuntu22.10.1
https://launchpad.net/ubuntu/+source/libbpf/0.5.0-1ubuntu22.04.1
--ch3c5svntljyzd2m
Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----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=q99G
-----END PGP SIGNATURE-----
--ch3c5svntljyzd2m--
--===============7430509192986682338==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline
--===============7430509192986682338==--
|
|
|
|
