Ubuntu 5983-1: Nette vulnerability | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Sign Up
==========================================================================
Ubuntu Security Notice USN-5983-1
March 29, 2023

php-nette vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS
- Ubuntu 16.04 ESM

Summary:

Nette could be made to run programs if it received specially crafted
network traffic.

Software Description:
- php-nette: Nette Framework

Details:

Cyku Hong discovered that Nette was not properly handling and validating
data used for code generation. A remote attacker could possibly use this
issue to execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
   php-nette                       2.4-20160731-1ubuntu0.1

Ubuntu 16.04 ESM:
   php-nette                       2.3.8-1ubuntu1+esm1

After a standard system update you need to restart any applications using
Nette to make all the necessary changes.

References:
   https://ubuntu.com/security/notices/USN-5983-1
   CVE-2020-15227

Package Information:
https://launchpad.net/ubuntu/+source/php-nette/2.4-20160731-1ubuntu0.1

Ubuntu 5983-1: Nette vulnerability

March 29, 2023
Nette could be made to run programs if it received specially crafted network traffic.

Summary

A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS - Ubuntu 16.04 ESM Summary: Nette could be made to run programs if it received specially crafted network traffic. Software Description: - php-nette: Nette Framework Details: Cyku Hong discovered that Nette was not properly handling and validating data used for code generation. A remote attacker could possibly use this issue to execute arbitrary code.

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS:   php-nette                       2.4-20160731-1ubuntu0.1 Ubuntu 16.04 ESM:   php-nette                       2.3.8-1ubuntu1+esm1 After a standard system update you need to restart any applications using Nette to make all the necessary changes.

References

  https://ubuntu.com/security/notices/USN-5983-1

  CVE-2020-15227

Severity
Ubuntu Security Notice USN-5983-1

Package Information

https://launchpad.net/ubuntu/+source/php-nette/2.4-20160731-1ubuntu0.1

Related News

Remotely Exploitable Open vSwitch DoS Vuln Fixed

PHP Vuln Threatens Confidentiality of Impacted Systems

Following exFAT Improvements Last Year, Microsoft Is Adding XFS Root File System to Mariner

Linux Kernel Use-After-Free Vuln Could lead to Privilege Escalation, Malware Attacks

News

Advisories

HOWTOs

Features

Linux Container Security Primer
Email Phishing Using Kali Linux
Is Linux A More Secure Option Than Windows For Businesses?
How Secure Is Linux?
How To Secure Against WordPress Vulnerabilities with Predictive Analysis Detection & Automated Remediation

About Us

Powered By

Footer Logo