USN-2901-1: xdelta3 vulnerability
USN-2901-1: xdelta3 vulnerability Ubuntu Security Notice USN-2901-1 17th February, 2016 xdelta3 vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 15.10 Ubuntu 14.04 LTS Summary xdelta3 could be made to crash or run programs if it opened a specially crafted file. Software description xdelta3 – Diff utility which works with binary files Details It was discovered that xdelta3 incorrectly handled certain files. If a useror automated system were tricked into processing a specially-crafted file,a remote attacker could use this issue to cause xdelta3 to crash, resultingin a denial of service, or possibly execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 15.10: xdelta3 3.0.8-dfsg-1ubuntu0.15.10.2 Ubuntu 14.04 LTS: xdelta3 3.0.7-dfsg-2ubuntu0.2 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will [ more… ]