Ubuntu 5672-1: GMP vulnerability | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Contribute
==========================================================================
Ubuntu Security Notice USN-5672-1
October 12, 2022

GMP vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 ESM

Summary:

GMP could be made to crash if it received specially crafted
input.

Software Description:
- gmp: Multiprecision arithmetic library developers tools

Details:

It was discovered that GMP did not properly manage memory
on 32-bit platforms when processing a specially crafted
input. An attacker could possibly use this issue to cause
applications using GMP to crash, resulting in a denial of
service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 20.04 LTS:
libgmp-dev 2:6.2.0+dfsg-4ubuntu0.1
libgmp10 2:6.2.0+dfsg-4ubuntu0.1
libgmpxx4ldbl 2:6.2.0+dfsg-4ubuntu0.1

Ubuntu 18.04 LTS:
libgmp-dev 2:6.1.2+dfsg-2ubuntu0.1
libgmp10 2:6.1.2+dfsg-2ubuntu0.1
libgmpxx4ldbl 2:6.1.2+dfsg-2ubuntu0.1

Ubuntu 16.04 ESM:
libgmp-dev 2:6.1.0+dfsg-2ubuntu0.1~esm1
libgmp10 2:6.1.0+dfsg-2ubuntu0.1~esm1
libgmpxx4ldbl 2:6.1.0+dfsg-2ubuntu0.1~esm1

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-5672-1
CVE-2021-43618

Package Information:
https://launchpad.net/ubuntu/+source/gmp/2:6.2.0+dfsg-4ubuntu0.1
https://launchpad.net/ubuntu/+source/gmp/2:6.1.2+dfsg-2ubuntu0.1

Ubuntu 5672-1: GMP vulnerability

October 12, 2022
GMP could be made to crash if it received specially crafted input.

Summary

A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 ESM Summary: GMP could be made to crash if it received specially crafted input. Software Description: - gmp: Multiprecision arithmetic library developers tools Details: It was discovered that GMP did not properly manage memory on 32-bit platforms when processing a specially crafted input. An attacker could possibly use this issue to cause applications using GMP to crash, resulting in a denial of service.

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS: libgmp-dev 2:6.2.0+dfsg-4ubuntu0.1 libgmp10 2:6.2.0+dfsg-4ubuntu0.1 libgmpxx4ldbl 2:6.2.0+dfsg-4ubuntu0.1 Ubuntu 18.04 LTS: libgmp-dev 2:6.1.2+dfsg-2ubuntu0.1 libgmp10 2:6.1.2+dfsg-2ubuntu0.1 libgmpxx4ldbl 2:6.1.2+dfsg-2ubuntu0.1 Ubuntu 16.04 ESM: libgmp-dev 2:6.1.0+dfsg-2ubuntu0.1~esm1 libgmp10 2:6.1.0+dfsg-2ubuntu0.1~esm1 libgmpxx4ldbl 2:6.1.0+dfsg-2ubuntu0.1~esm1 In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-5672-1

CVE-2021-43618

Severity
Ubuntu Security Notice USN-5672-1

Package Information

https://launchpad.net/ubuntu/+source/gmp/2:6.2.0+dfsg-4ubuntu0.1 https://launchpad.net/ubuntu/+source/gmp/2:6.1.2+dfsg-2ubuntu0.1

Related News

10 Essential Linux Tools for Network and Security Pros

Delving into Container Security

Debian and Ubuntu Users Get Kernel Security Updates to Fix Recent Wi-Fi Stack Flaws

News

Advisories

HOWTOs

Features

ManageEngine Vulnerability Manager Plus: How To Protect Your Enterprise from Security Vulnerabilities
High-Impact DoS, Arbitrary Code Execution, Spoofing Bugs Fixed in Thunderbird 102.9.0
A Guide to Business Cybersecurity: Common Digital Attacks and Precautions
New Linux IceFire Ransomware Variant Discovered: What You Need to Know to Secure Your Systems
ZeroLock: How to Defend Against Ransomware on Linux

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy