drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in rpcbind (Aktualisierung)
Name: |
Denial of Service in rpcbind (Aktualisierung) |
|
ID: |
USN-4986-4 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 14.04 ESM, Ubuntu 16.04 ESM |
|
Datum: |
Sa, 12. Juni 2021, 07:22 |
|
Referenzen: |
Keine Angabe |
|
Applikationen: |
rpcbind |
|
Update von: |
Denial of Service in rpcbind |
|
Originalnachricht |
--===============1436737205486356869== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="WIyZ46R2i8wDzkSu" Content-Disposition: inline
--WIyZ46R2i8wDzkSu Content-Type: text/plain; charset=us-ascii Content-Disposition: inline
========================================================================== Ubuntu Security Notice USN-4986-4 June 10, 2021
rpcbind regression ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 16.04 ESM - Ubuntu 14.04 ESM
Summary:
USN-4986-1 caused a regression in rpcbind.
Software Description: - rpcbind: converts RPC program numbers into universal addresses
Details:
USN-4986-1 fixed a vulnerability in rpcbind. The update caused a regression resulting in rpcbind crashing in certain environments. This update fixes the problem for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM.
Original advisory details:
It was discovered that rpcbind incorrectly handled certain large data sizes. A remote attacker could use this issue to cause rpcbind to consume resources, leading to a denial of service.
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 16.04 ESM: rpcbind 0.2.3-0.2ubuntu0.16.04.1+esm2
Ubuntu 14.04 ESM: rpcbind 0.2.1-2ubuntu2.2+esm2
After a standard system update you need to reboot your computer to make all the necessary changes.
References: https://ubuntu.com/security/notices/USN-4986-4 https://ubuntu.com/security/notices/USN-4986-1 https://launchpad.net/bugs/1931507
--WIyZ46R2i8wDzkSu Content-Type: application/pgp-signature; name="signature.asc"
-----BEGIN PGP SIGNATURE-----
iQIzBAABCgAdFiEEf+ebRFcoyOoAQoOeRbznW4QLH2kFAmDCgNQACgkQRbznW4QL H2ljwA//WZTrTlNbOg3o+6GsgykSROpNPizd9UUul4Wi4/ALSf3WTJ5Vlbrszs/W 7xl9XLCetT2qQAFkCn9yCOE6JIRkj/nRkSQ0p8IZrYhxDX15NBau0LSBtrAtZWbj ePQPt7jv9PaloI5mswrF/4H5vcAMWIm5Kpuv6PUPibwdfVpc0WFJjhniVE0QFVVT ysCn94y6bsNDgV0V2ChM/SfCB7NrulEjpt9S9TDW/nC9IgVBl7jUo70ZsA9BUmwl kxC7mdVw6BdEh109cMbKrTRpV00EpapQfuQRWlKuAWYtxeUZf25Ehcb5QG5G5Mna luKFnVPMlRD336XPI2ph5+PnrNzaELJKP+v9xHpVRIHWWvcfmiMRC6vsw6zDVtu1 aDyU/Mfxj16M+Pg9Buohog0pBp4bAob3B0gK3VxDU8232E2gKDXEHWgRQdGiEQYC 00HqeVxJ0s/2fo3mcemz6Ed0QA42ANYWGqyxUNKPxyiSak8s18UjguXSh2zREWgJ 2vSNzxwpfgcVaeRNEkUXEW3NnYpZPEyYpn2+McsEiXFBLic0pfDZpFl4zsU+t2fd VYb+OKsWc0HUG3kpLEwXCIyOr7B/JCQotppO7sBN1k8K1T5wdP1UnubD9lfyBcjr d/RW9EswqA8E76oyMv6H+Qr60roXopBDzNnFcAe7dq5lFZ0Vyyw= =ntwj -----END PGP SIGNATURE-----
--WIyZ46R2i8wDzkSu--
--===============1436737205486356869== Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: base64 Content-Disposition: inline
-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
|
|
|
|