Ubuntu 4001-2: libseccomp vulnerability

    Date30 May 2019
    CategoryUbuntu
    52
    Posted ByLinuxSecurity Advisories
    libseccomp could allow unintended access to system calls.
    ==========================================================================
    Ubuntu Security Notice USN-4001-2
    May 30, 2019
    
    libseccomp vulnerability
    ==========================================================================
    
    A security issue affects these releases of Ubuntu and its derivatives:
    
    - Ubuntu 14.04 ESM
    
    Summary:
    
    libseccomp could allow unintended access to system calls.
    
    Software Description:
    - libseccomp: library for working with the Linux seccomp filter
    
    Details:
    
    USN-4001-1 fixed a vulnerability in libseccomp. This update provides the
    corresponding update for Ubuntu 14.04 ESM.
    
    Original advisory details:
    
     Jann Horn discovered that libseccomp did not correctly generate 64-bit
     syscall argument comparisons with arithmetic operators (LT, GT, LE, GE).
     An attacker could use this to bypass intended access restrictions for
     argument-filtered system calls.
    
    Update instructions:
    
    The problem can be corrected by updating your system to the following
    package versions:
    
    Ubuntu 14.04 ESM:
      libseccomp2                     2.4.1-0ubuntu0.14.04.2
    
    This update uses a new upstream release which includes additional bug
    fixes. In general, a standard system update will make all the necessary
    changes.
    
    References:
      https://usn.ubuntu.com/usn/usn-4001-2
      https://usn.ubuntu.com/usn/usn-4001-1
      CVE-2019-9893
    
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"25","type":"x","order":"1","pct":54.35,"resources":[]},{"id":"88","title":"Should be more technical","votes":"5","type":"x","order":"2","pct":10.87,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"16","type":"x","order":"3","pct":34.78,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.