Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Ubuntu 16.04 ESM: USN-5656-1 High: JACK Crash On Socket Handling

Calendar Oct 04, 2022 User Avatar LinuxSecurity Advisories
1 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory Ubuntu high jackd2 socket crash audio connection
JACK could cause a crash in certain conditions. 
=========================================================================Ubuntu Security Notice USN-5656-1
October 04, 2022

jackd2 vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 16.04 ESM

Summary:

JACK could cause a crash in certain conditions.

Software Description:
- jackd2: JACK Audio Connection Kit (server and example clients)

Details:

Joseph Yasi discovered that JACK incorrectly handled the closing of a 
socket in certain conditions. An attacker could potentially use this 
issue to cause a crash.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 ESM:
   jackd2 
1.9.10+20150825git1ed50c92~dfsg-1ubuntu1+esm1
   jackd2-firewire 
1.9.10+20150825git1ed50c92~dfsg-1ubuntu1+esm1
   libjack-jackd2-0 
1.9.10+20150825git1ed50c92~dfsg-1ubuntu1+esm1

In general, a standard system update will make all the necessary changes.

References:
   https://ubuntu.com/security/notices/USN-5656-1
   CVE-2019-13351

Ubuntu 16.04 ESM: USN-5656-1 High: JACK Crash On Socket Handling

ubuntu
Calendar Grey October 4, 2022
Dist Ubuntu Esm H88
A problem with JACK audio routing could lead to a system failure in certain scenarios. Please upgrade urgently for Ubuntu 16.04 ESM.
JACK could cause a crash in certain conditions.

Summary

Topics%20covered

Topics Covered

security advisory Ubuntu high jackd2 socket crash audio connection

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 ESM: jackd2 1.9.10+20150825git1ed50c92~dfsg-1ubuntu1+esm1 jackd2-firewire 1.9.10+20150825git1ed50c92~dfsg-1ubuntu1+esm1 libjack-jackd2-0 1.9.10+20150825git1ed50c92~dfsg-1ubuntu1+esm1 In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-5656-1

CVE-2019-13351

Severity
important
Lowest
Low
Medium
High
Critical

October 04, 2022

Topics%20covered

Topics Covered

security advisory Ubuntu high jackd2 socket crash audio connection

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here