Ubuntu security notices
USN-4173-1: FreeTDS vulnerability
USN-4173-1: FreeTDS vulnerability freetds vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 19.10 Ubuntu 19.04 Ubuntu 18.04 LTS Summary FreeTDS could be made to crash or run programs if it received specially crafted network traffic. Software Description freetds – libraries for connecting to MS SQL and Sybase SQL servers Details Felix Wilhelm discovered that FreeTDS incorrectly handled certain types after a protocol downgrade. A remote attacker could use this issue to cause FreeTDS to crash, resulting in a denial of service, or possibly execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 19.10 freetds-bin – 1.1.6-1ubuntu0.1 libct4 – 1.1.6-1ubuntu0.1 libsybdb5 – 1.1.6-1ubuntu0.1 tdsodbc – 1.1.6-1ubuntu0.1 Ubuntu 19.04 freetds-bin – 1.00.104-1ubuntu0.1 libct4 – 1.00.104-1ubuntu0.1 libsybdb5 – 1.00.104-1ubuntu0.1 tdsodbc – 1.00.104-1ubuntu0.1 Ubuntu 18.04 LTS freetds-bin – [ more… ]