지락문화예술공작단

USN-3214-1: w3m vulnerabilities Ubuntu Security Notice USN-3214-1 2nd March, 2017 w3m vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary Several security issues were fixed in w3m. Software description w3m – WWW browsable pager with excellent tables/frames support Details A large number of security issues were discovered in the w3m browser. If auser were tricked into viewing a malicious website, a remote attacker couldexploit a variety of issues related to web browser security, includingcross-site scripting attacks, denial of service attacks, and arbitrary codeexecution. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 14.04 LTS: w3m 0.5.3-15ubuntu0.1 Ubuntu 12.04 LTS: w3m 0.5.3-5ubuntu1.2 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. [ more… ]

USN-3215-1: Munin vulnerability Ubuntu Security Notice USN-3215-1 2nd March, 2017 munin vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 LTS Summary Munin could be made to overwrite files. Software description munin – Network-wide graphing framework Details It was discovered that Munin incorrectly handled CGI graphs. A remoteattacker could use this issue to overwrite arbitrary files as the www-datauser. Update instructions The problem can be corrected by updating your system to the following package version: Ubuntu 14.04 LTS: munin 2.0.19-3ubuntu0.2 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a standard system update will make all the necessary changes. References CVE-2017-6188 Source: USN-3215-1: Munin vulnerability