drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in ICU
| Name: |
Ausführen beliebiger Kommandos in ICU |
|
| ID: |
USN-4305-1 |
|
| Distribution: |
Ubuntu |
|
| Plattformen: |
Ubuntu 16.04 LTS, Ubuntu 12.04 ESM, Ubuntu 18.04 LTS, Ubuntu 14.04 ESM, Ubuntu 19.10 |
|
| Datum: |
Di, 17. März 2020, 18:15 |
|
| Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10531 |
|
| Applikationen: |
International Components for Unicode (C/C++) |
|
Originalnachricht |
--===============0217112358203210068==
Content-Type: multipart/signed; micalg=pgp-sha512;
protocol="application/pgp-signature";
boundary="pWyiEgJYm5f9v55/"
Content-Disposition: inline
--pWyiEgJYm5f9v55/
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inlin
Content-Transfer-Encoding: quoted-printable
==========================================================================
Ubuntu Security Notice USN-4305-1
March 17, 2020
icu vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 19.10
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS
- Ubuntu 14.04 ESM
- Ubuntu 12.04 ESM
Summary:
ICU could be made to execute arbitrary code if it received a specially crafted
string.
Software Description:
- icu: International Components for Unicode library
Details:
André Bargull discovered that ICU incorrectly handled certain strings.
An attacker could possibly use this issue to execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 19.10:
libicu63 63.2-2ubuntu0.1
Ubuntu 18.04 LTS:
libicu60 60.2-3ubuntu3.1
Ubuntu 16.04 LTS:
libicu55 55.1-7ubuntu0.5
Ubuntu 14.04 ESM:
libicu52 52.1-3ubuntu0.8+esm1
Ubuntu 12.04 ESM:
libicu48 4.8.1.1-3ubuntu0.10
In general, a standard system update will make all the necessary changes.
References:
https://usn.ubuntu.com/4305-1
CVE-2020-10531
Package Information:
https://launchpad.net/ubuntu/+source/icu/63.2-2ubuntu0.1
https://launchpad.net/ubuntu/+source/icu/60.2-3ubuntu3.1
https://launchpad.net/ubuntu/+source/icu/55.1-7ubuntu0.5
--pWyiEgJYm5f9v55/
Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----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=UHB3
-----END PGP SIGNATURE-----
--pWyiEgJYm5f9v55/--
--===============0217112358203210068==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline
LS0gCnVidW50dS1zZWN1cml0eS1hbm5vdW5jZSBtYWlsaW5nIGxpc3QKdWJ1bnR1LXNlY3VyaXR5
LWFubm91bmNlQGxpc3RzLnVidW50dS5jb20KTW9kaWZ5IHNldHRpbmdzIG9yIHVuc3Vic2NyaWJl
IGF0OiBodHRwczovL2xpc3RzLnVidW50dS5jb20vbWFpbG1hbi9saXN0aW5mby91YnVudHUtc2Vj
dXJpdHktYW5ub3VuY2UK
--===============0217112358203210068==--
|
|
|
|
