Alerts This Week
Warning Icon 1 1,295
Alerts This Week
Warning Icon 1 1,295

Ubuntu 14.04 ESM USN-5672-2 Warning for Moderate GMP Crash Risk

ubuntu
Calendar Grey March 6, 2023
Dist Ubuntu Esm H88
A vulnerability in GMP may lead to a system failure when processing specially designed input, impacting Ubuntu 14.04 ESM users. Update now for the necessary patch.
GMP could be made to crash if it received specially crafted input.

Summary

GMP could be made to crash if it received specially crafted

input.

Software Description:

- gmp: Multiprecision arithmetic library developers tools

Details:

USN-5672-1 fixed a vulnerability in GMP. This update provides

the corresponding update for Ubuntu 14.04 ESM.

Original advisory details:

 It was discovered that GMP did not properly manage memory

 on 32-bit platforms when processing a specially crafted

 input. An attacker could possibly use this issue to cause

 applications using GMP to crash, resulting in a denial of

 service.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 ESM:
   libgmp-dev                      2:5.1.3+dfsg-1ubuntu1+esm1
   libgmp10                        2:5.1.3+dfsg-1ubuntu1+esm1
   libgmpxx4ldbl                   2:5.1.3+dfsg-1ubuntu1+esm1

In general, a standard system update will make all the necessary changes.

References

  https://ubuntu.com/security/notices/USN-5672-2

  https://ubuntu.com/security/notices/USN-5672-1

  CVE-2021-43618

March 06, 2023

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here