USN-3309-1: Libtasn1 vulnerability
USN-3309-1: Libtasn1 vulnerability Ubuntu Security Notice USN-3309-1 5th June, 2017 libtasn1-6 vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 17.04 Ubuntu 16.10 Ubuntu 16.04 LTS Ubuntu 14.04 LTS Summary Libtasn1 could be made to crash or run programs as your login if it opened a specially crafted file. Software description libtasn1-6 – Library to manage ASN.1 structures Details Jakub Jirasek discovered that GnuTLS incorrectly handled certainassignments files. If a user were tricked into processing a speciallycrafted assignments file, a remote attacker could possibly execute arbirarycode. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 17.04: libtasn1-6 4.10-1ubuntu0.1 Ubuntu 16.10: libtasn1-6 4.9-4ubuntu0.1 Ubuntu 16.04 LTS: libtasn1-6 4.7-3ubuntu0.16.04.2 Ubuntu 14.04 LTS: libtasn1-6 3.4-3ubuntu0.5 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will [ more… ]