Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
172
security advisorydenial of servicecritical issueUbuntu 21.10: USN-5391-1 Critical Libsepol Denial of Service Issue
Several security issues were fixed in libsepol.. =========================================================================Ubuntu Security Notice USN-5391-1 April 27, 2022 libsepol vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 21.10 - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 ESM Summary: Several security issues were fixed in libsepol. Software Description: - libsepol: SELinux library for manipulating binary security policies Details: Nicolas Iooss discovered that libsepol incorrectly handled memory when handling policies. An attacker could possibly use this issue to cause a crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2021-36084) It was discovered that libsepol incorrectly handled memory when handling policies. An attacker could possibly use this issue to cause a crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2021-36085) It was discovered that libsepol incorrectly handled memory when handling policies. An attacker could possibly use this issue to cause a crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affects Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 21.10. (CVE-2021-36086) It was discovered that libsepol incorrectly validated certain data, leading to a heap overflow. An attacker could possibly use this issue to cause a crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2021-36087) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 21.10: libsepol1 3.1-1ubuntu2.1 sepol-utils 3.1-1ubuntu2.1 Ubuntu 20.04 LTS: libsepol1 3.0-1ubuntu0.1 sepol-utils 3.0-1ubuntu0.1 Ubuntu 18.04 LTS: libsepol1 2.7-1ubuntu0.1 sepol-utils 2.7-1ubuntu0.1 Ubuntu 16.04 ESM: libsepol1 2.4-2ubuntu0.1~esm1 sepol-utils 2.4-2ubuntu0.1~esm1 In general, a standard system update will make all the necessary changes. References: CVE-2021-36084, CVE-2021-36085, CVE-2021-36086, CVE-2021-36087 Package Information: https://launchpad.net/ubuntu/+source/libsepol/3.1-1ubuntu2.1 https://launchpad.net/ubuntu/+source/libsepol/3.0-1ubuntu0.1 https://launchpad.net/ubuntu/+source/libsepol/2.7-1ubuntu0.1 . A series of vulnerabilities in libsepol have been patched in Ubuntu via package updates, impacting various versions.. Libsepol Issues, Ubuntu Security Update, Patch Management. . Severity: Critical. LinuxSecurity.com Team
Apr 27, 2022 •Critical Ubuntu 89
security advisorymoderateaccess controlFedora Core 5: 2006-271 Moderate Update For Libsepol Policy Fix
Update SELinux policy to current rawhide to fix many policy problems . ---------------------------------------------------------------------Fedora Update Notification FEDORA-2006-271 2006-04-11 ---------------------------------------------------------------------Product : Fedora Core 5 Name : libsepol Version : 1.12.4 Release : 1.fc5 Summary : SELinux binary policy manipulation library Description : Security-enhanced Linux is a feature of the Linux® kernel and a number of utilities with enhanced security functionality designed to add mandatory access controls to Linux. The Security-enhanced Linux kernel contains new architectural components originally developed to improve the security of the Flask operating system. These architectural components provide general support for the enforcement of many kinds of mandatory access control policies, including those based on the concepts of Type Enforcement®, Role-based Access Control, and Multi-level Security. libsepol provides an API for the manipulation of SELinux binary policies. It is used by checkpolicy (the policy compiler) and similar tools, as well as by programs like load_policy that need to perform specific transformations on binary policies such as customizing policy boolean settings. ---------------------------------------------------------------------Update Information: Update SELinux policy to current rawhide to fix many policy problems ---------------------------------------------------------------------* Mon Apr 3 2006 Dan Walsh 1.12.4-1.fc5 - Bump for FC5 * Wed Mar 29 2006 Dan Walsh 1.12.4-1 - Upgrade to latest from NSA * Generalize test for bitmap overflow in ebitmap_set_bit. * Mon Mar 27 2006 Dan Walsh 1.12.3-1 - Upgrade to latest from NSA * Fixed attr_convert_callback and expand_convert_type_set typemap bug. * Fri Mar 24 2006 Dan Walsh 1.12.2-1 - Upgrade to latest from NSA * Fixed avrule_block_write num_decls endian bug. *Fri Mar 17 2006 Dan Walsh 1.12.1-1 - Upgrade to latest from NSA * Fixed sepol_module_package_write buffer overflow bug. ---------------------------------------------------------------------This update can be downloaded from: 898a86aaf531753c3d2df49cc685dc1c641f7a9b SRPMS/libsepol-1.12.4-1.fc5.src.rpm e0d976643374b7d6694f253f49697aa3cc669227 ppc/libsepol-1.12.4-1.fc5.ppc.rpm 0c0f1dfc42c5116b941937cda3e5ba0136292fd1 ppc/libsepol-devel-1.12.4-1.fc5.ppc.rpm 776bf940200ef1292c97d3f3d41025af96cd2b79 ppc/debug/libsepol-debuginfo-1.12.4-1.fc5.ppc.rpm 47cbad1912e07a8e949e6004d3d4023622f39fb6 x86_64/libsepol-1.12.4-1.fc5.x86_64.rpm 71fb2d5115076ec520e81752fdf430bcba345453 x86_64/libsepol-devel-1.12.4-1.fc5.x86_64.rpm b3d84eef5157ba7a92588b8a7aa7c5d18dc3b410 x86_64/debug/libsepol-debuginfo-1.12.4-1.fc5.x86_64.rpm eb81ee7b91bfb2540764e97bdd3571ffb874c69c i386/libsepol-1.12.4-1.fc5.i386.rpm 4f621a495943eb4ed5919d393d0a30962028bbb1 i386/libsepol-devel-1.12.4-1.fc5.i386.rpm 47e0e367adad01bbcbc51914fd0ca12f205432f2 i386/debug/libsepol-debuginfo-1.12.4-1.fc5.i386.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at . ----------------------------------------------------------------------- fedora-announce-list mailing list
Apr 11, 2006 Fedora 
89
security advisorybuffer overflowcriticalFedora Core 5: FEDORA-2006-181 Critical: libsepol Buffer Overflow
Updated package.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2006-181 2006-03-22 ---------------------------------------------------------------------Product : Fedora Core 5 Name : libsepol Version : 1.12.1 Release : 1.fc5 Summary : SELinux binary policy manipulation library Description : Security-enhanced Linux is a feature of the Linux® kernel and a number of utilities with enhanced security functionality designed to add mandatory access controls to Linux. The Security-enhanced Linux kernel contains new architectural components originally developed to improve the security of the Flask operating system. These architectural components provide general support for the enforcement of many kinds of mandatory access control policies, including those based on the concepts of Type Enforcement®, Role-based Access Control, and Multi-level Security. libsepol provides an API for the manipulation of SELinux binary policies. It is used by checkpolicy (the policy compiler) and similar tools, as well as by programs like load_policy that need to perform specific transformations on binary policies such as customizing policy boolean settings. ---------------------------------------------------------------------* Fri Mar 10 2006 Dan Walsh 1.12.1-1.fc5 - Rebuild for FC5 * Fri Mar 10 2006 Dan Walsh 1.12.1-1 - Upgrade to latest from NSA * Fixed sepol_module_package_write buffer overflow bug. * Fri Mar 10 2006 Dan Walsh 1.12-2 - Upgrade to latest from NSA * Updated version for release. * Merged cond_evaluate_expr fix from Serge Hallyn (IBM). * Fixed bug in copy_avrule_list reported by Ivan Gyurdiev. * Merged sepol_policydb_mls_enabled interface and error handling changes from Ivan Gyurdiev. ---------------------------------------------------------------------This update can be downloaded from: 6a56e03e0ed58605e59bace79658ae6c79ad5526 SRPMS/libsepol-1.12.1-1.fc5.src.rpm 9d6bff26494775a10fb5ded6555b58e25496134d ppc/libsepol-1.12.1-1.fc5.ppc.rpm 68f165fff6bc1f70b738964d7abe8efbd94fcac7 ppc/libsepol-devel-1.12.1-1.fc5.ppc.rpm 13f9577f869e54974ddea33b2a12a3babe91529e ppc/debug/libsepol-debuginfo-1.12.1-1.fc5.ppc.rpm f92af280e5231267c3f64aa9f8822088a1a88662 x86_64/libsepol-1.12.1-1.fc5.x86_64.rpm f66da53a2fef5abe89b779f19f6c46dd69983e06 x86_64/libsepol-devel-1.12.1-1.fc5.x86_64.rpm 2dbe14ef4d499261d204606f7b214cca83e32b0b x86_64/debug/libsepol-debuginfo-1.12.1-1.fc5.x86_64.rpm fac29252d46cd3968c298035624a056b6314ce0d i386/libsepol-1.12.1-1.fc5.i386.rpm 234a7c955123257c99a996f0a7376f7579ce7979 i386/libsepol-devel-1.12.1-1.fc5.i386.rpm 04818575ea15f189dc6ce56028e7ad0c409f4ca0 i386/debug/libsepol-debuginfo-1.12.1-1.fc5.i386.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at . ----------------------------------------------------------------------- fedora-announce-list mailing list
Mar 22, 2006 •Critical Fedora 89
security advisorycriticalFedora CoreFedora Core 4: FEDORA-2005-612 Critical: libsepol SELinux Enhancement
Updated package.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2005-612 2005-07-25 ---------------------------------------------------------------------Product : Fedora Core 4 Name : libsepol Version : 1.5.10 Release : 1.1 Summary : SELinux binary policy manipulation library Description : Security-enhanced Linux is a patch of the Linux® kernel and a number of utilities with enhanced security functionality designed to add mandatory access controls to Linux. The Security-enhanced Linux kernel contains new architectural components originally developed to improve the security of the Flask operating system. These architectural components provide general support for the enforcement of many kinds of mandatory access control policies, including those based on the concepts of Type Enforcement®, Role-based Access Control, and Multi-level Security. libsepol provides an API for the manipulation of SELinux binary policies. It is used by checkpolicy (the policy compiler) and similar tools, as well as by programs like load_policy that need to perform specific transformations on binary policies such as customizing policy boolean settings. ---------------------------------------------------------------------* Thu Jul 21 2005 Dan Walsh 1.5.10-1.1 - Fix reset booleans warning message again ---------------------------------------------------------------------This update can be downloaded from: d7613a682b14ca4db27eef3e44003aeb SRPMS/libsepol-1.5.10-1.1.src.rpm 6185caa6d990133ff10fa66773f43e08 ppc/libsepol-1.5.10-1.1.ppc.rpm 647fa553ff47117962890e4f1b1b16ce ppc/libsepol-devel-1.5.10-1.1.ppc.rpm 2bcf161eb560bae3723124bce2e86fb8 ppc/debug/libsepol-debuginfo-1.5.10-1.1.ppc.rpm 434f63abd9b0392597517959976a7089 ppc/libsepol-1.5.10-1.1.ppc64.rpm 0d4172bbd68db86b24a941e0a3fc45ef x86_64/libsepol-1.5.10-1.1.x86_64.rpm 88f658c4e50b6e1060755a4f4714a5c6 x86_64/libsepol-devel-1.5.10-1.1.x86_64.rpm c07e4a613515d4b69518a90151b92032 x86_64/debug/libsepol-debuginfo-1.5.10-1.1.x86_64.rpm ece8bba047bddb372383ff44783cee09 x86_64/libsepol-1.5.10-1.1.i386.rpm ece8bba047bddb372383ff44783cee09 i386/libsepol-1.5.10-1.1.i386.rpm 075b6b27fd0f5c2ed12531448cf10fea i386/libsepol-devel-1.5.10-1.1.i386.rpm 380f57a848f63e9cab494e1822de6505 i386/debug/libsepol-debuginfo-1.5.10-1.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. -----------------------------------------------------------------------fedora-announce-list mailing list
Jul 25, 2005 •Critical Fedora 
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!