Alerts This Week
Warning Icon 1 485
Alerts This Week
Warning Icon 1 485

Gentoo: GLSA-202310-25 High: libjpeg-turbo Security Vulnerability

gentoo
Calendar Grey April 17, 2019
Dist Gentoo Esm H88
The Gentoo GLSA 202001-03 details a vulnerability in libgcrypt that poses a risk of unauthorized access. Users are recommended to update for enhanced protection.
A vulnerability in libseccomp allows for privilege escalation.

Summary

Please review the CVE identifier referenced below for details.

Resolution

All libseccomp users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=sys-libs/libseccomp-2.4.0"

References

[ 1 ] CVE-2019-9893 https://nvd.nist.gov/vuln/detail/CVE-2019-9893

Availability

This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/201904-18
style>.gentoo_availability{display:block;}

Concerns

Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

Severity
important
Lowest
Low
Medium
High
Critical

Severity: Normal
Title: libseccomp: Privilege escalation
Date: April 17, 2019
Bugs: #680442
ID: 201904-18

Synopsis

A vulnerability in libseccomp allows for privilege escalation.

Background

A library that provides an easy to use, platform independent, interface to the Linux Kernel's syscall filtering mechanism.

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 sys-libs/libseccomp < 2.4.0 >= 2.4.0

Impact

===== Please review the referenced CVE identifier for details.

Workaround

There is no known workaround at this time.

Your message here