Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 519
Alerts This Week
Warning Icon 1 519

Ubuntu 18.04: USN-5172-1 Moderate Advisory on Uriparser Issues

ubuntu
Calendar Grey December 6, 2021
Dist Ubuntu Esm H88
Essential patches for Ubuntu 18.04 LTS tackling uriparser vulnerabilities that pose a possible threat of arbitrary code execution.
Several security issues were fixed in uriparser.

Summary

Several security issues were fixed in uriparser.

Software Description:

- uriparser: Strictly RFC 3986 compliant URI parsing library

Details:

It was discovered that uriparser mishandled certain input. An attacker

could use this vulnerability to cause uriparser to crash or possibly

execute arbitrary code. (CVE-2018-19198, CVE-2018-19199, CVE-2018-19200)

It was discovered that uriparser incorrectly handled certain URIs. An

attacker could use this vulnerability to cause a crash or possibly leak

sensitive information. (CVE-2018-20721)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
  liburiparser1                   0.8.4-1+deb9u2build0.18.04.1

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-5172-1

CVE-2018-19198, CVE-2018-19199, CVE-2018-19200, CVE-2018-20721

Severity
important
Lowest
Low
Medium
High
Critical

December 06, 2021

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.