drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in ICU
Name: |
Ausführen beliebiger Kommandos in ICU |
|
ID: |
USN-4305-1 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 16.04 LTS, Ubuntu 12.04 ESM, Ubuntu 18.04 LTS, Ubuntu 14.04 ESM, Ubuntu 19.10 |
|
Datum: |
Di, 17. März 2020, 18:15 |
|
Referenzen: |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10531 |
|
Applikationen: |
International Components for Unicode (C/C++) |
|
Originalnachricht |
--===============0217112358203210068== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="pWyiEgJYm5f9v55/" Content-Disposition: inline
--pWyiEgJYm5f9v55/ Content-Type: text/plain; charset=iso-8859-1 Content-Disposition: inlin Content-Transfer-Encoding: quoted-printable
========================================================================== Ubuntu Security Notice USN-4305-1 March 17, 2020
icu vulnerability ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 19.10 - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS - Ubuntu 14.04 ESM - Ubuntu 12.04 ESM
Summary:
ICU could be made to execute arbitrary code if it received a specially crafted string.
Software Description: - icu: International Components for Unicode library
Details:
André Bargull discovered that ICU incorrectly handled certain strings. An attacker could possibly use this issue to execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 19.10: libicu63 63.2-2ubuntu0.1
Ubuntu 18.04 LTS: libicu60 60.2-3ubuntu3.1
Ubuntu 16.04 LTS: libicu55 55.1-7ubuntu0.5
Ubuntu 14.04 ESM: libicu52 52.1-3ubuntu0.8+esm1
Ubuntu 12.04 ESM: libicu48 4.8.1.1-3ubuntu0.10
In general, a standard system update will make all the necessary changes.
References: https://usn.ubuntu.com/4305-1 CVE-2020-10531
Package Information: https://launchpad.net/ubuntu/+source/icu/63.2-2ubuntu0.1 https://launchpad.net/ubuntu/+source/icu/60.2-3ubuntu3.1 https://launchpad.net/ubuntu/+source/icu/55.1-7ubuntu0.5
--pWyiEgJYm5f9v55/ Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEEf+ebRFcoyOoAQoOeRbznW4QLH2kFAl5w4PMACgkQRbznW4QL H2l4LA/+JtP/+Aw+wD3jxurYxjLUqaAY3ZRYIdA5CJkRMQQ1rWgmzdo0RsY+oEPL i9PwNvy1J1+8lXDkiYVRCAs+ySdSIZbcYT2TGLEyDHkFqnQ7RwTqmD8d1fl964kl 9JaSXcLt6bL4Pm4ax48LdWcvI0jiz2QYXWPZxPtiO5cKw3BuFSwKfaBSsTrrKlxz xw2ZCZssf7eYzto43CXoErz83gOVESOXHAz52BaxKvRPffk3oZLFtvy9mzZEvfQV zB9WOLXWKYMU9ntvA70YmuL1fV5RmX+PHFYTaZglodgRPUJ0U5JQRhUo8/soc5Sn cald6GLvJCL927ECDNV2L67IWdXlMKmUfincEWafcsv3QEPFl8VLXMPPUEtrMl89 hSTbiXX3DCI839HpBETH1LJePlEC+m70Bh5wcVVAgEZTGIswdFmeGSWf0vm+Usnj 7Y8BdDNy20eyiZsgK5LyGY8IbaAbrhhmbqUXdtUDdumz2KaHdX0zdn/yCGdQjkic TuLTjrzkcVZqsIs34KnFgGxwZm5luqyGImHbf2B2EjtlTPtW+87QXFJeVdKEDsz+ C6a0l7TigND5/XOR0swcuxYKvISC6YDJs5k5b6O5scFF7TlrlkJDGHBBkobvh69t dknOEXNe3BRh+OQE/zk46eT719/s0wyyNJdKqdW6+GzAXUCm2TA= =UHB3 -----END PGP SIGNATURE-----
--pWyiEgJYm5f9v55/--
--===============0217112358203210068== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline
LS0gCnVidW50dS1zZWN1cml0eS1hbm5vdW5jZSBtYWlsaW5nIGxpc3QKdWJ1bnR1LXNlY3VyaXR5 LWFubm91bmNlQGxpc3RzLnVidW50dS5jb20KTW9kaWZ5IHNldHRpbmdzIG9yIHVuc3Vic2NyaWJl IGF0OiBodHRwczovL2xpc3RzLnVidW50dS5jb20vbWFpbG1hbi9saXN0aW5mby91YnVudHUtc2Vj dXJpdHktYW5ub3VuY2UK
--===============0217112358203210068==--
|
|
|
|