USN-986-3 -- dpkg vulnerabilityID: oval:org.secpod.oval:def:700064 | Date: (C)2011-01-28 (M)2023-11-09 |
Class: PATCH | Family: unix |
USN-986-1 fixed vulnerabilities in bzip2. dpkg statically links against libbz2 and needed to be rebuilt to use the updated libbz2. Original advisory details: An integer overflow was discovered in bzip2. If a user or automated system were tricked into decompressing a crafted bz2 file, an attacker could cause bzip2 or any application linked against libbz2 to crash or possibly execute code as the user running the program.
Platform: |
Ubuntu 8.04 |
Ubuntu 10.04 |
Ubuntu 9.10 |
Ubuntu 6.06 |
Ubuntu 9.04 |