libuv could be made to crash or execute arbitrary code if it received a specially
crafted path.
Software Description:
- libuv1: asynchronous event notification library - runtime library
Details:
It was discovered that libuv incorrectly handled certain paths.
An attacker could possibly use this issue to cause a crash or execute
arbitrary code.
The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS: libuv1 1.34.2-1ubuntu1.1 After a standard system update you need to reboot your computer to make all the necessary changes.
https://ubuntu.com/security/notices/USN-4548-1
CVE-2020-8252
Get the latest Linux and open source security news straight to your inbox.