drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Zwei Probleme in systemd
Name: |
Zwei Probleme in systemd |
|
ID: |
USN-3558-1 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 14.04 LTS, Ubuntu 16.04 LTS |
|
Datum: |
Mo, 5. Februar 2018, 23:03 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1049
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15908 |
|
Applikationen: |
systemd |
|
Originalnachricht |
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --===============8780799881816391680== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="FNijG1jo7qMOLrDENups3Nre11rKWAJdf"
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --FNijG1jo7qMOLrDENups3Nre11rKWAJdf Content-Type: multipart/mixed; boundary="I0ipkDHJB9cGeFejUYIJuohj0L1XvlhLP"; protected-headers="v1" From: Marc Deslauriers <marc.deslauriers@canonical.com> Reply-To: Ubuntu Security <security@ubuntu.com> To: "ubuntu-security-announce@lists.ubuntu.com" <ubuntu-security-announce@lists.ubuntu.com> Message-ID: <01e587e1-e639-9871-e177-2fee38c62bd1@canonical.com> Subject: [USN-3558-1] systemd vulnerabilities
--I0ipkDHJB9cGeFejUYIJuohj0L1XvlhLP Content-Type: text/plain; charset=utf-8 Content-Language: en-C Content-Transfer-Encoding: quoted-printable
========================================================================== Ubuntu Security Notice USN-3558-1 February 05, 2018
systemd vulnerabilities ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 16.04 LTS - Ubuntu 14.04 LTS
Summary:
Several security issues were fixed in systemd.
Software Description: - systemd: system and service manager
Details:
Karim Hossen & Thomas Imbert and Nelson William Gamazo Sanchez independently discovered that systemd-resolved incorrectly handled certain DNS responses. A remote attacker could possibly use this issue to cause systemd to temporarily stop responding, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS. (CVE-2017-15908)
It was discovered that systemd incorrectly handled automounted volumes. A local attacker could possibly use this issue to cause applications to hang, resulting in a denial of service. (CVE-2018-1049)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 16.04 LTS: systemd 229-4ubuntu21.1
Ubuntu 14.04 LTS: systemd 204-5ubuntu20.26
In general, a standard system update will make all the necessary changes.
References: https://www.ubuntu.com/usn/usn-3558-1 CVE-2017-15908, CVE-2018-1049
Package Information: https://launchpad.net/ubuntu/+source/systemd/229-4ubuntu21.1 https://launchpad.net/ubuntu/+source/systemd/204-5ubuntu20.26
--I0ipkDHJB9cGeFejUYIJuohj0L1XvlhLP--
--FNijG1jo7qMOLrDENups3Nre11rKWAJdf Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE-----
iQIcBAEBCgAGBQJaeK5jAAoJEGVp2FWnRL6T/+8P/1rhxAOncVlGK3ctM4eo1+gv +xOtS1kIjjkmCNtr0sftAv+22+WYVQ6nC9NtxSe8jt9I796mZMi+dBr7sBHDXP69 dsvv+ZV9PaxgQYUnQLeVEFuP4DWxXXnakA+1aufCW5Xji2AqWAPgTPaC0QJmhOmk ntvkNJia2+hw7QDxjD1knzR5vBr5t5K6RC/xo2XgIbQyksnR+flxPBEfjreOadrR cNXVR6xvo8gce+maM3/2jYhgaSJSOBCWFmyK1Ap1RPGQIpQl3kATgkhMfekBpel4 qNkvuoz5aDWNNN1he+Ul27jfwF0ZTyOHmCFrnYG/O+5pNl3T5yd1R+0GGILX50NX Ud20DL8kkjj9e/vQAzGTKT+y2jUgHq1cktbUcUxMr+VkgIcPQVk01EXLmgk9uOlE uzDkbAE/fA5Js7JuG/WjksAM8NDFrT3AKzPMQM4rxOJdpJvFWGUum6+jtCT/BwjK Z+wp9DnRlXzHi7mGqK0TBvCO4RHikdB0RjZXpfqh9KlFHV7sJZFCUGORBeArmQAc k++H5l2tPgoum0bwsoau/I9SfMoMJ4zQUoQkwP7A8FHhMjS0lf2i3vrsAxkBC+a9 Amupg9sKt5kazFz2fR9lBkMkYg1+39QAzwI96gcKkC/1cwUtU3KjEknreQdgXJF9 fotT6DkFc88khPvZUBQS =Nlqn -----END PGP SIGNATURE-----
--FNijG1jo7qMOLrDENups3Nre11rKWAJdf--
--===============8780799881816391680== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline
LS0gCnVidW50dS1zZWN1cml0eS1hbm5vdW5jZSBtYWlsaW5nIGxpc3QKdWJ1bnR1LXNlY3VyaXR5 LWFubm91bmNlQGxpc3RzLnVidW50dS5jb20KTW9kaWZ5IHNldHRpbmdzIG9yIHVuc3Vic2NyaWJl IGF0OiBodHRwczovL2xpc3RzLnVidW50dS5jb20vbWFpbG1hbi9saXN0aW5mby91YnVudHUtc2Vj dXJpdHktYW5ub3VuY2UK
--===============8780799881816391680==--
|
|
|
|