{"id":21713,"date":"2022-03-14T22:48:45","date_gmt":"2022-03-14T19:48:45","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/166304\/USN-5324-1.txt"},"modified":"2022-03-15T14:38:23","modified_gmt":"2022-03-15T11:08:23","slug":"ubuntu-security-notice-usn-5324-1","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/ubuntu-security-notice-usn-5324-1\/","title":{"rendered":"Ubuntu Security Notice USN-5324-1"},"content":{"rendered":"

==========================================================================
\nUbuntu Security Notice USN-5324-1
\nMarch 14, 2022<\/p>\n

libxml2 vulnerability
\n==========================================================================<\/p>\n

A security issue affects these releases of Ubuntu and its derivatives:<\/p>\n

– Ubuntu 21.10
\n– Ubuntu 20.04 LTS
\n– Ubuntu 18.04 LTS<\/p>\n

Summary:<\/p>\n

libxml2 could be made to crash or run programs if it opened a specially
\ncrafted file.<\/p>\n

Software Description:
\n– libxml2: GNOME XML library<\/p>\n

Details:<\/p>\n

It was discovered that libxml2 incorrectly handled certain XML files. An
\nattacker could use this issue to cause libxml2 to crash, resulting in a
\ndenial of service, or possibly execute arbitrary code.<\/p>\n

Update instructions:<\/p>\n

The problem can be corrected by updating your system to the following
\npackage versions:<\/p>\n

Ubuntu 21.10:
\nlibxml2 2.9.12+dfsg-4ubuntu0.1
\nlibxml2-utils 2.9.12+dfsg-4ubuntu0.1<\/p>\n

Ubuntu 20.04 LTS:
\nlibxml2 2.9.10+dfsg-5ubuntu0.20.04.2
\nlibxml2-utils 2.9.10+dfsg-5ubuntu0.20.04.2<\/p>\n

Ubuntu 18.04 LTS:
\nlibxml2 2.9.4+dfsg1-6.1ubuntu1.5
\nlibxml2-utils 2.9.4+dfsg1-6.1ubuntu1.5<\/p>\n

In general, a standard system update will make all the necessary changes.<\/p>\n

References:
\nhttps:\/\/ubuntu.com\/security\/notices\/USN-5324-1
\nCVE-2022-23308<\/p>\n

Package Information:
\nhttps:\/\/launchpad.net\/ubuntu\/+source\/libxml2\/2.9.12+dfsg-4ubuntu0.1
\nhttps:\/\/launchpad.net\/ubuntu\/+source\/libxml2\/2.9.10+dfsg-5ubuntu0.20.04.2
\nhttps:\/\/launchpad.net\/ubuntu\/+source\/libxml2\/2.9.4+dfsg1-6.1ubuntu1.5<\/p>\n","protected":false},"excerpt":{"rendered":"

========================================================================== Ubuntu Security Notice USN-5324-1 March 14, 2022 libxml2 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: – Ubuntu 21.10 – Ubuntu 20.04 LTS – Ubuntu 18.04 LTS Summary: libxml2 could be made to crash or run programs if it opened a specially crafted file. Software Description: – libxml2: GNOME …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-21713","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/21713","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=21713"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/21713\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=21713"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=21713"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=21713"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}