Alerts This Week
Warning Icon 1 684
Alerts This Week
Warning Icon 1 684

Ubuntu 12.04: USN-1820-1 Critical Gpsd Denial of Service

Calendar May 08, 2013 User Avatar LinuxSecurity Advisories
1 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory denial of service critical Ubuntu update instructions malicious input gpsd
gpsd could be made to crash or possibly run programs if it received specially crafted input. 
=========================================================================Ubuntu Security Notice USN-1820-1
May 08, 2013

gpsd vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 12.04 LTS

Summary:

gpsd could be made to crash or possibly run programs if it received
specially crafted input.

Software Description:
- gpsd: Global Positioning System - daemon

Details:

It was discovered that gpsd incorrectly handled certain malformed GPS data.
An attacker could use this issue to cause gpsd to crash, resulting in a
denial of service, or possibly execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 LTS:
  gpsd                            3.4-2ubuntu0.1

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-1820-1
  CVE-2013-2038

Package Information:
  https://launchpad.net/ubuntu/+source/gpsd/3.4-2ubuntu0.1

Ubuntu 12.04: USN-1820-1 Critical Gpsd Denial of Service

ubuntu
Calendar Grey May 8, 2013
Dist Ubuntu Esm H88
An exploit found in the gpsd component of Ubuntu may cause system failures or allow unauthorized code execution stemming from harmful inputs.
gpsd could be made to crash or possibly run programs if it received specially crafted input.

Summary

Topics%20covered

Topics Covered

security advisory denial of service critical Ubuntu update instructions malicious input gpsd

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: gpsd 3.4-2ubuntu0.1 In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-1820-1

CVE-2013-2038

Severity
critical
Lowest
Low
Medium
High
Critical

May 08, 2013

Topics%20covered

Topics Covered

security advisory denial of service critical Ubuntu update instructions malicious input gpsd

Package Information

https://launchpad.net/ubuntu/+source/gpsd/3.4-2ubuntu0.1

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here