Ubuntu Security Update USN-3489-1: Berkeley DB vulnerability

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,793
Reaction score
74
Credits
-1,257
Ubuntu Security Notice USN-3489-1


21st November, 2017

db5.3 vulnerability


A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 17.04
  • Ubuntu 16.04 LTS
  • Ubuntu 14.04 LTS
Summary


Berkeley DB could be made to expose sensitive information.

Software description

  • db5.3 - Berkeley v5.3 Database Documentation
    HTML: 
    [/LIST]
[SIZE=4][B]Details[/B][/SIZE]


It was discovered that Berkeley DB incorrectly handled certain configuration files.
An attacker could possibly use this issue to read sensitive information.

[SIZE=4][B]Update instructions[/B][/SIZE]


The problem can be corrected by updating your system to the following package version:

Ubuntu 17.04:
[URL='https://launchpad.net/ubuntu/+source/db5.3']db5.3-util[/URL]  [URL='https://launchpad.net/ubuntu/+source/db5.3/5.3.28-12ubuntu0.1']5.3.28-12ubuntu0.1[/URL]
[URL='https://launchpad.net/ubuntu/+source/db5.3']libdb5.3[/URL]  [URL='https://launchpad.net/ubuntu/+source/db5.3/5.3.28-12ubuntu0.1']5.3.28-12ubuntu0.1[/URL]
Ubuntu 16.04 LTS:
[URL='https://launchpad.net/ubuntu/+source/db5.3']db5.3-util[/URL]  [URL='https://launchpad.net/ubuntu/+source/db5.3/5.3.28-11ubuntu0.1']5.3.28-11ubuntu0.1[/URL]
[URL='https://launchpad.net/ubuntu/+source/db5.3']libdb5.3[/URL]  [URL='https://launchpad.net/ubuntu/+source/db5.3/5.3.28-11ubuntu0.1']5.3.28-11ubuntu0.1[/URL]
Ubuntu 14.04 LTS:
[URL='https://launchpad.net/ubuntu/+source/db5.3']db5.3-util[/URL]  [URL='https://launchpad.net/ubuntu/+source/db5.3/5.3.28-3ubuntu3.1']5.3.28-3ubuntu3.1[/URL]
[URL='https://launchpad.net/ubuntu/+source/db5.3']libdb5.3[/URL]  [URL='https://launchpad.net/ubuntu/+source/db5.3/5.3.28-3ubuntu3.1']5.3.28-3ubuntu3.1[/URL]

To update your system, please follow these instructions: [URL]https://wiki.ubuntu.com/Security/Upgrades[/URL].

In general, a standard system update will make all the necessary changes.

[SIZE=4][B]References[/B][/SIZE]


[URL='http://people.ubuntu.com/~ubuntu-security/cve/CVE-2017-10140']CVE-2017-10140[/URL]

[url="http://www.ubuntu.com/usn/usn-3489-1/"]Continue reading...[/url]
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-8168-2: Rust vulnerability
Replies
0
Views
120
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8269-1: Avahi vulnerabilities
Replies
0
Views
123
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8226-2: kmod update
Replies
0
Views
183
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8147-1: libarchive vulnerabilities
Replies
0
Views
197
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8202-3: jq regression
Replies
0
Views
89
LinuxBot
LinuxBot


Follow Linux.org

Members online

Total: 2,424 (members: 3, guests: 2,421)

Latest posts

Top