USN-4050-1: ZeroMQ vulnerability
USN-4050-1: ZeroMQ vulnerability zeromq3 vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 19.04 Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Summary ZeroMQ could be made to crash or run programs if it received specially crafted network traffic. Software Description zeromq3 – lightweight messaging kernel Details It was discovered that ZeroMQ incorrectly handled certain application metadata. A remote attacker could use this issue to cause ZeroMQ to crash, or possibly execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 19.04 libzmq5 – 4.3.1-3ubuntu2.1 Ubuntu 18.10 libzmq5 – 4.2.5-2ubuntu0.2 Ubuntu 18.04 LTS libzmq5 – 4.2.5-1ubuntu0.2 Ubuntu 16.04 LTS libzmq5 – 4.1.4-7ubuntu0.1 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. References CVE-2019-13132 Source: [ more… ]