[월:] 2016년 01월

Ubuntu Security Notice USN-2859-1 13th January, 2016 thunderbird vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 15.10 Ubuntu 15.04 Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Several security issues were fixed in Thunderbird. Software description thunderbird – Mozilla Open Source mail and newsgroup client Details Andrei Vaida, Jesse Ruderman, Bob Clary, and Jesse Rudermandiscovered multiple memory safety issues in Thunderbird. If a user weretricked in to opening a specially crafted message, an attacker couldpotentially exploit these to cause a denial of service via applicationcrash, or execute arbitrary code with the privileges of the user invokingThunderbird. (CVE-2015-7201) Ronald Crane discovered a buffer overflow through code inspection. If auser were tricked in to opening a specially crafted website in a browsingcontext, an attacker could potentially exploit this to cause a denial ofservice via application crash, or execute [ more… ]

Ubuntu Security Notice USN-2868-1 13th January, 2016 isc-dhcp vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 15.10 Ubuntu 15.04 Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary DHCP server, client, or relay could be made to crash if they received specially crafted network traffic. Software description isc-dhcp – DHCP server and client Details Sebastian Poehn discovered that the DHCP server, client, and relayincorrectly handled certain malformed UDP packets. A remote attacker coulduse this issue to cause the DHCP server, client, or relay to stopresponding, resulting in a denial of service. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 15.10: isc-dhcp-server 4.3.1-5ubuntu3.1 isc-dhcp-relay 4.3.1-5ubuntu3.1 isc-dhcp-client 4.3.1-5ubuntu3.1 isc-dhcp-server-ldap 4.3.1-5ubuntu3.1 Ubuntu 15.04: isc-dhcp-server 4.3.1-5ubuntu2.3 isc-dhcp-relay 4.3.1-5ubuntu2.3 isc-dhcp-client 4.3.1-5ubuntu2.3 isc-dhcp-server-ldap 4.3.1-5ubuntu2.3 Ubuntu 14.04 LTS: isc-dhcp-server 4.2.4-7ubuntu12.4 isc-dhcp-relay 4.2.4-7ubuntu12.4 isc-dhcp-client 4.2.4-7ubuntu12.4 isc-dhcp-server-ldap [ more… ]