========================================================================== Ubuntu Security Notice USN-3400-1 August 21, 2017
augeas vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 17.04 - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: Augeas could be made to crash if it received specially crafted input. Software Description: - augeas: Configuration editing tool Details: It was discovered that Augeas incorrectly handled certain strings. An attacker could use this issue to cause Augeas to crash, leading to a denial of service, or possibly execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 17.04: augeas-tools 1.6.0-0ubuntu3.1 libaugeas0 1.6.0-0ubuntu3.1 Ubuntu 16.04 LTS: augeas-tools 1.4.0-0ubuntu1.1 libaugeas0 1.4.0-0ubuntu1.1 Ubuntu 14.04 LTS: augeas-tools 1.2.0-0ubuntu1.3 libaugeas0 1.2.0-0ubuntu1.3 In general, a standard system update will make all the necessary changes. References: https://www.ubuntu.com/usn/usn-3400-1 CVE-2017-7555 Package Information: https://launchpad.net/ubuntu/+source/augeas/1.6.0-0ubuntu3.1 https://launchpad.net/ubuntu/+source/augeas/1.4.0-0ubuntu1.1 https://launchpad.net/ubuntu/+source/augeas/1.2.0-0ubuntu1.3
signature.asc
Description: This is a digitally signed message part
-- ubuntu-security-announce mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
