Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 538
Alerts This Week
Warning Icon 1 538

Ubuntu 18.04 LTS: USN-4644-1 moderate: igraph denial of service

ubuntu
Calendar Grey November 24, 2020
Dist Ubuntu Esm H88
Ubuntu Security Notice USN-4644-1 highlights a critical flaw in the igraph library affecting graph analysis, enabling denial of service via malformed XML input
igraph could be made to crash if it opened a specially crafted file.

Summary

igraph could be made to crash if it opened a specially crafted file.

Software Description:

- igraph: None

Details:

It was discovered that igraph mishandled certain malformed XML. An attacker

could use this vulnerability to cause a denial of service (crash).

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
  libigraph0v5                    0.7.1-2.1+deb9u1build0.18.04.1

Ubuntu 16.04 LTS:
  libigraph0v5                    0.7.1-2.1+deb9u1build0.16.04.1

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-4644-1

CVE-2018-20349

November 24, 2020

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.