drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in GLib
| Name: |
Ausführen beliebiger Kommandos in GLib |
|
| ID: |
USN-7532-1 |
|
| Distribution: |
Ubuntu |
|
| Plattformen: |
Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS, Ubuntu 24.10, Ubuntu 25.04 |
|
| Datum: |
Di, 27. Mai 2025, 07:14 |
|
| Referenzen: |
https://www.cve.org/CVERecord?id=CVE-2025-4373 |
|
| Applikationen: |
GLib |
|
Originalnachricht |
--===============1671493020642390390==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="BXVAT5kNtrzKuDFl"
Content-Disposition: inline
--BXVAT5kNtrzKuDFl
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
==========================================================================
Ubuntu Security Notice USN-7532-1
May 26, 2025
glib2.0 vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 25.04
- Ubuntu 24.10
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Summary:
GLib could be made to crash or execute arbitrary code if it
received a specially crafted input.
Software Description:
- glib2.0: GLib library of C routines
Details:
It was discovered that Glib incorrectly handled certain inputs.
An attacker could possibly use this issue to cause a crash
or execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 25.04
libglib2.0-0t64 2.84.1-1ubuntu0.1
libglib2.0-bin 2.84.1-1ubuntu0.1
Ubuntu 24.10
libglib2.0-0t64 2.82.1-0ubuntu1.1
libglib2.0-bin 2.82.1-0ubuntu1.1
Ubuntu 24.04 LTS
libglib2.0-0t64 2.80.0-6ubuntu3.4
libglib2.0-bin 2.80.0-6ubuntu3.4
Ubuntu 22.04 LTS
libglib2.0-0 2.72.4-0ubuntu2.5
libglib2.0-bin 2.72.4-0ubuntu2.5
Ubuntu 20.04 LTS
libglib2.0-0 2.64.6-1~ubuntu20.04.9
libglib2.0-bin 2.64.6-1~ubuntu20.04.9
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-7532-1
CVE-2025-4373
Package Information:
https://launchpad.net/ubuntu/+source/glib2.0/2.84.1-1ubuntu0.1
https://launchpad.net/ubuntu/+source/glib2.0/2.82.1-0ubuntu1.1
https://launchpad.net/ubuntu/+source/glib2.0/2.80.0-6ubuntu3.4
https://launchpad.net/ubuntu/+source/glib2.0/2.72.4-0ubuntu2.5
https://launchpad.net/ubuntu/+source/glib2.0/2.64.6-1~ubuntu20.04.9
--BXVAT5kNtrzKuDFl
Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----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=eZSD
-----END PGP SIGNATURE-----
--BXVAT5kNtrzKuDFl--
--===============1671493020642390390==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline
--===============1671493020642390390==--
|
|
|
|
