Ubuntu 5056-1: APR vulnerability

Advisories

==========================================================================
Ubuntu Security Notice USN-5056-1
August 30, 2021

apr vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 21.04
- Ubuntu 16.04 ESM
- Ubuntu 14.04 ESM

Summary:

APR could be made to expose sensitive information if it received a specially crafted input.

Software Description:
- apr: Apache Portable Runtime Library

Details:

It was discovered that APR incorrectly handled certain inputs.
An attacker could possibly use this issue to expose sensitive information.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 21.04:
  libapr1                         1.7.0-6ubuntu0.1

Ubuntu 16.04 ESM:
  libapr1                         1.5.2-3ubuntu0.1~esm1

Ubuntu 14.04 ESM:
  libapr1                         1.5.0-1ubuntu0.1~esm1

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-5056-1
  CVE-2021-35940

Package Information:
  https://launchpad.net/ubuntu/+source/apr/1.7.0-6ubuntu0.1

Ubuntu 5056-1: APR vulnerability

August 30, 2021

Summary

A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 21.04 - Ubuntu 16.04 ESM - Ubuntu 14.04 ESM Summary: APR could be made to expose sensitive information if it received a specially crafted input. Software Description: - apr: Apache Portable Runtime Library Details: It was discovered that APR incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information.

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 21.04: libapr1 1.7.0-6ubuntu0.1 Ubuntu 16.04 ESM: libapr1 1.5.2-3ubuntu0.1~esm1 Ubuntu 14.04 ESM: libapr1 1.5.0-1ubuntu0.1~esm1 In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-5056-1

CVE-2021-35940

Severity
Ubuntu Security Notice USN-5056-1

Package Information

https://launchpad.net/ubuntu/+source/apr/1.7.0-6ubuntu0.1

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.