- Detalji os-a: WN7
- Važnost: IMP
- Operativni sustavi: L
- Kategorije: LUB
==========================================================================
Ubuntu Security Notice USN-2918-1
March 03, 2016
pixman vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
– Ubuntu 14.04 LTS
– Ubuntu 12.04 LTS
Summary:
pixman could be made to crash or run programs as your login if it processed
specially crafted data.
Software Description:
– pixman: pixel-manipulation library for X and cairo
Details:
Vincent LE GARREC discovered an integer underflow in pixman. If a user were
tricked into opening a specially crafted file, a remote attacker could
cause pixman to crash, resulting in a denial of service, or possibly
execute arbitrary code.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 14.04 LTS:
libpixman-1-0 0.30.2-2ubuntu1.1
Ubuntu 12.04 LTS:
libpixman-1-0 0.30.2-1ubuntu0.0.0.0.3
After a standard system update you need to restart your session to make
all the necessary changes.
References:
http://www.ubuntu.com/usn/usn-2918-1
CVE-2014-9766
Package Information:
https://launchpad.net/ubuntu/+source/pixman/0.30.2-2ubuntu1.1
https://launchpad.net/ubuntu/+source/pixman/0.30.2-1ubuntu0.0.0.0.3
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2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=uD59
—–END PGP SIGNATURE—–
—
| Autor | Andrej Sefic |
| Cert id | NCERT-REF-2016-03-0020-ADV |
| Cve | CERT-CVE-DUMMY |
| ID izvornika | CERT-ORIGID-DUMMY |
| Proizvod | CERT-DUMMY-PRODUCT |
| Izvor | http://www.adobe.com/ |
