USN-5148-2

See a problem?

Source

https://ubuntu.com/security/notices/USN-5148-2

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5148-2.json

JSON Data

https://api.osv.dev/v1/vulns/USN-5148-2

Related

Published

2021-11-16T23:17:13.190605Z

Modified

2021-11-16T23:17:13.190605Z

Summary

hivex vulnerability

Details

USN-5148-1 fixed a vulnerability in hivex. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM.

Original advisory details:

It was discovered that hivex incorrectly handled certain input. An attacker could use this vulnerability to cause a crash or obtain sensitive information.

References

Affected packages

Ubuntu:Pro:14.04:LTS / hivex

Package

Name: hivex
Purl: pkg:deb/ubuntu/hivex@1.3.9-2ubuntu0.1~esm1?arch=src?distro=trusty/esm

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.3.9-2ubuntu0.1~esm1

Affected versions

1.*

1.3.7-5

1.3.8-1

1.3.8-1build1

1.3.9-1

1.3.9-2

1.3.9-2build1

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
    "binaries": [
        {
            "ruby-hivex-dbgsym": "1.3.9-2ubuntu0.1~esm1",
            "libhivex-ocaml": "1.3.9-2ubuntu0.1~esm1",
            "libhivex0": "1.3.9-2ubuntu0.1~esm1",
            "libwin-hivex-perl-dbgsym": "1.3.9-2ubuntu0.1~esm1",
            "python3-hivex-dbgsym": "1.3.9-2ubuntu0.1~esm1",
            "libhivex-ocaml-dbgsym": "1.3.9-2ubuntu0.1~esm1",
            "libhivex0-dbgsym": "1.3.9-2ubuntu0.1~esm1",
            "libhivex-ocaml-dev-dbgsym": "1.3.9-2ubuntu0.1~esm1",
            "libhivex-dev": "1.3.9-2ubuntu0.1~esm1",
            "libhivex-ocaml-dev": "1.3.9-2ubuntu0.1~esm1",
            "python3-hivex": "1.3.9-2ubuntu0.1~esm1",
            "libhivex0-dbg": "1.3.9-2ubuntu0.1~esm1",
            "libhivex-bin-dbgsym": "1.3.9-2ubuntu0.1~esm1",
            "libhivex-bin": "1.3.9-2ubuntu0.1~esm1",
            "libwin-hivex-perl": "1.3.9-2ubuntu0.1~esm1",
            "python-hivex": "1.3.9-2ubuntu0.1~esm1",
            "ruby-hivex": "1.3.9-2ubuntu0.1~esm1",
            "libhivex-dev-dbgsym": "1.3.9-2ubuntu0.1~esm1",
            "python-hivex-dbgsym": "1.3.9-2ubuntu0.1~esm1"
        }
    ]
}

Ubuntu:Pro:16.04:LTS / hivex

Package

Name: hivex
Purl: pkg:deb/ubuntu/hivex@1.3.13-1ubuntu0.1~esm1?arch=src?distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.3.13-1ubuntu0.1~esm1

Affected versions

1.*

1.3.11-1build1

1.3.12-1

1.3.13-1

1.3.13-1build1

1.3.13-1build2

1.3.13-1build3

Ecosystem specific

{
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "binaries": [
        {
            "ruby-hivex-dbgsym": "1.3.13-1ubuntu0.1~esm1",
            "libhivex-ocaml": "1.3.13-1ubuntu0.1~esm1",
            "libhivex0": "1.3.13-1ubuntu0.1~esm1",
            "libhivex-ocaml-dbgsym": "1.3.13-1ubuntu0.1~esm1",
            "libhivex0-dbgsym": "1.3.13-1ubuntu0.1~esm1",
            "libhivex-ocaml-dev-dbgsym": "1.3.13-1ubuntu0.1~esm1",
            "libhivex-dev": "1.3.13-1ubuntu0.1~esm1",
            "libhivex-ocaml-dev": "1.3.13-1ubuntu0.1~esm1",
            "python3-hivex": "1.3.13-1ubuntu0.1~esm1",
            "libhivex0-dbg": "1.3.13-1ubuntu0.1~esm1",
            "libhivex-bin-dbgsym": "1.3.13-1ubuntu0.1~esm1",
            "libhivex-bin": "1.3.13-1ubuntu0.1~esm1",
            "libwin-hivex-perl": "1.3.13-1ubuntu0.1~esm1",
            "python-hivex": "1.3.13-1ubuntu0.1~esm1",
            "ruby-hivex": "1.3.13-1ubuntu0.1~esm1",
            "libhivex-dev-dbgsym": "1.3.13-1ubuntu0.1~esm1",
            "libwin-hivex-perl-dbgsym": "1.3.13-1ubuntu0.1~esm1"
        }
    ]
}