Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Ubuntu 4014-1: Serious GLib Information Exposure Vulnerability Alert

ubuntu
Calendar Grey June 10, 2019
Dist Ubuntu Esm H88
The Ubuntu Security Notice USN-4015-1 addresses a potential SQLite vulnerability that could expose confidential information through manipulated databases.
GLib could be made to expose sensitive information if it received a specially crafted file.

Summary

GLib could be made to expose sensitive information if it

received a specially crafted file.

Software Description:

- glib2.0: GLib library of C routines

Details:

It was discovered that GLib incorrectly handled certain files.

An attacker could possibly use this issue to access sensitive information.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 19.04:
  libglib2.0-0                    2.60.0-1ubuntu0.1
  libglib2.0-bin                  2.60.0-1ubuntu0.1
  libglib2.0-dev                  2.60.0-1ubuntu0.1

Ubuntu 18.10:
  libglib2.0-0                    2.58.1-2ubuntu0.1
  libglib2.0-bin                  2.58.1-2ubuntu0.1
  libglib2.0-dev                  2.58.1-2ubuntu0.1

Ubuntu 18.04 LTS:
  libglib2.0-0                    2.56.4-0ubuntu0.18.04.3
  libglib2.0-bin                  2.56.4-0ubuntu0.18.04.3
  libglib2.0-dev                  2.56.4-0ubuntu0.18.04.3

Ubuntu 16.04 LTS:
  libglib2.0-0                    2.48.2-0ubuntu4.2
  libglib2.0-bin                  2.48.2-0ubuntu4.2
  libglib2.0-dev                  2.48.2-0ubuntu4.2

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-4014-1

CVE-2019-12450

Severity
critical
Lowest
Low
Medium
High
Critical

June 10, 2019

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.