Alerts This Week
Warning Icon 1 938
Alerts This Week
Warning Icon 1 938

Ubuntu 22.04: Libmobi Important Denial of Service USN-7638-1

ubuntu
Calendar Grey July 17, 2025
Dist Ubuntu Esm H88
Multiple vulnerabilities identified in Libmobi for Ubuntu 22.04, underscoring possible denial of service threats.
Several security issues were fixed in Libmobi.

Summary

Several security issues were fixed in Libmobi.

Software Description:

- libmobi: C library for handling Kindle (MOBI) formats of ebook documents

Details:

It was discovered that Libmobi did not correctly handle certain memory

operations, which could lead to a buffer overflow. A local attacker

could possibly trigger this vulnerability to cause a denial of service.

(CVE-2022-1907, CVE-2022-1908)

It was discovered that Libmobi could dereference a NULL pointer via the

component mobi_buffer_getpointer. A local attacker could possibly

trigger this vulnerability to cause a denial of service.

(CVE-2022-29788)

Topics%20covered

Topics Covered

security advisory denial of service buffer overflow Ubuntu important libmobi

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS
  libmobi0                        0.9+dfsg1-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7638-1

CVE-2022-1907, CVE-2022-1908, CVE-2022-29788

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7638-1

Topics%20covered

Topics Covered

security advisory denial of service buffer overflow Ubuntu important libmobi

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here