USN-3310-1: lintian vulnerability
USN-3310-1: lintian vulnerability Ubuntu Security Notice USN-3310-1 6th June, 2017 lintian vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.04 Ubuntu 16.10 Ubuntu 16.04 LTS Summary lintian could be made to run programs if it processed a specially crafted package. Software description lintian – Debian package checker Details Jakub Wilk discovered that lintian incorrectly handled deserializingcertain YAML files. If a user or automated system were tricked into runninglintian on a specially crafted package, a remote attacker could possiblyuse this issue to execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 17.04: lintian 2.5.50.1ubuntu0.1 Ubuntu 16.10: lintian 2.5.48ubuntu0.1 Ubuntu 16.04 LTS: lintian 2.5.43ubuntu0.1 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. References [ more… ]
