Debian Security Update DSA-4389 libu2f-host - security update

Thread starter LinuxBot
Start date Feb 11, 2019

LinuxBot

Member

Feb 11, 2019

#1

Christian Reitter discovered that libu2f-host, a library implementing the host-side of the U2F protocol, failed to properly check for a buffer overflow. This would allow an attacker with a custom made malicious USB device masquerading as a security key, and physical access to a computer where PAM U2F or an application with libu2f-host integrated, to potentially execute arbitrary code on that computer.

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-6223-1 flatpak - security update

Replies: 0

Views: 118

Apr 22, 2026

LinuxBot

Debian Security Update DSA-6207-1 flatpak - security update

Replies: 0

Views: 141

Apr 12, 2026

LinuxBot

Debian Security Update DSA-6143-1 libvpx - security update

Replies: 0

Views: 141

Feb 20, 2026

LinuxBot

Debian Security Update DSA-6222-1 ngtcp2 - security update

Replies: 0

Views: 123

Apr 21, 2026

LinuxBot

Debian Security Update DSA-6138-1 libpng1.6 - security update

Replies: 0

Views: 139

Feb 18, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Staff online

f33dm3bits
Super Moderator

Members online

Total: 4,039 (members: 9, guests: 4,030)

Latest posts

MX23 boot options glitch
- Latest: Rocketing-warp9
- Today at 4:22 PM
Debian and derivatives
J
Ubuntu 26.04 Dock crashes
- Latest: Jens55
- Today at 3:06 PM
Ubuntu forum
Linux on a Mac?
- Latest: Rocketing-warp9
- Today at 2:24 PM
Laptops / Netbooks
New to the whole Linux scene, have heard really great things figured I'd maybe give it a crack?
- Latest: MikeWalsh
- Today at 1:53 PM
Getting Started
HELP: Internet and Headphones not connecting after graphics card update
- Latest: beanburrito
- Today at 12:42 PM
Linux Networking

Top