Sign up to save your podcasts
Or
Share Episode 91
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 91
Overview
This week we look at security updates for GUPnP, OpenJPEG, bsdiff and more.
This week in Ubuntu Security Updates
24 unique CVEs addressed
[USN-4488-2] X.Org X Server vulnerabilities [00:31]
[LSN-0071-1] Linux kernel vulnerability [00:50]
[USN-4494-1] GUPnP vulnerability [01:29]
Ubuntu) desktop and many other applications
UPnP SUBSCRIBE can contain arbitrary delivery URL - so this could be on a
different network segment than the event subscription URL - so you can
SUBSCRIBE to events and supply one or more URLs for delivery of the
messages. Can then make this point anywhere and so can get the device to
send HTTP traffic to any arbitrary destination - and so can be used for
data exfil or DDoS attacks etc. Fixed to check the destination host is
either a link-local address or the address mask matches - either way,
check is on the same network segment.
[USN-4495-1] Apache Log4j vulnerability [03:21]
data from the network could be exploited to run arbitrary code
[USN-4496-1] Apache XML-RPC vulnerability [03:42]
server could cause code execution on the client as a result
[USN-4497-1] OpenJPEG vulnerabilities [03:58]
C - DoS, RCE etc via crafted image data
[USN-4499-1] MilkyTracker vulnerabilities [04:27]
buffer overflows - RCE if loading untrusted files
[USN-4498-1] Loofah vulnerability [04:52]
[USN-4500-1] bsdiff vulnerabilities [05:16]
based buffer overflow -> code exec / DoS
[USN-4501-1] LuaJIT vulnerability [05:40]
[USN-4502-1] websocket-extensions vulnerability [05:49]
parse headers, could be sent crafted input which is very computationally
intensive to parse as a result -> CPU based DoS
[USN-4503-1] Perl DBI module vulnerability [06:21]
and hence result in invalid pointers to object that were previously on
the stack - could be manipulated by a remote user to result in memory
corruption etc -> crash
Get in contact
View all episodes
By Ubuntu Security Team
4.8
1010 ratings
Overview
This week we look at security updates for GUPnP, OpenJPEG, bsdiff and more.
This week in Ubuntu Security Updates
24 unique CVEs addressed
[USN-4488-2] X.Org X Server vulnerabilities [00:31]
[LSN-0071-1] Linux kernel vulnerability [00:50]
[USN-4494-1] GUPnP vulnerability [01:29]
Ubuntu) desktop and many other applications
UPnP SUBSCRIBE can contain arbitrary delivery URL - so this could be on a
different network segment than the event subscription URL - so you can
SUBSCRIBE to events and supply one or more URLs for delivery of the
messages. Can then make this point anywhere and so can get the device to
send HTTP traffic to any arbitrary destination - and so can be used for
data exfil or DDoS attacks etc. Fixed to check the destination host is
either a link-local address or the address mask matches - either way,
check is on the same network segment.
[USN-4495-1] Apache Log4j vulnerability [03:21]
data from the network could be exploited to run arbitrary code
[USN-4496-1] Apache XML-RPC vulnerability [03:42]
server could cause code execution on the client as a result
[USN-4497-1] OpenJPEG vulnerabilities [03:58]
C - DoS, RCE etc via crafted image data
[USN-4499-1] MilkyTracker vulnerabilities [04:27]
buffer overflows - RCE if loading untrusted files
[USN-4498-1] Loofah vulnerability [04:52]
[USN-4500-1] bsdiff vulnerabilities [05:16]
based buffer overflow -> code exec / DoS
[USN-4501-1] LuaJIT vulnerability [05:40]
[USN-4502-1] websocket-extensions vulnerability [05:49]
parse headers, could be sent crafted input which is very computationally
intensive to parse as a result -> CPU based DoS
[USN-4503-1] Perl DBI module vulnerability [06:21]
and hence result in invalid pointers to object that were previously on
the stack - could be manipulated by a remote user to result in memory
corruption etc -> crash
Get in contact