USN-6737-1 fixed a vulnerability in the GNU C Library. This update provides the corresponding update for Ubuntu 24.04 LTS.
Original advisory details:
Charles Fol discovered that the GNU C Library iconv feature incorrectly handled certain input sequences. An attacker could use this issue to cause the GNU C Library to crash, resulting in a denial of service, or possibly execute arbitrary code.
{ "availability": "No subscription required", "binaries": [ { "libc6-s390-dbgsym": "2.39-0ubuntu8.1", "libc6-dev": "2.39-0ubuntu8.1", "libc6-dev-s390": "2.39-0ubuntu8.1", "libc6-dev-i386": "2.39-0ubuntu8.1", "locales-all": "2.39-0ubuntu8.1", "libc6-amd64-dbgsym": "2.39-0ubuntu8.1", "glibc-source": "2.39-0ubuntu8.1", "libc6-dev-amd64": "2.39-0ubuntu8.1", "nscd-dbgsym": "2.39-0ubuntu8.1", "nscd": "2.39-0ubuntu8.1", "glibc-doc": "2.39-0ubuntu8.1", "libc6-dbg": "2.39-0ubuntu8.1", "libc6": "2.39-0ubuntu8.1", "libc-bin": "2.39-0ubuntu8.1", "libc6-i386": "2.39-0ubuntu8.1", "libc6-dev-x32": "2.39-0ubuntu8.1", "libc-bin-dbgsym": "2.39-0ubuntu8.1", "libc-dev-bin": "2.39-0ubuntu8.1", "libc6-amd64": "2.39-0ubuntu8.1", "libc6-x32": "2.39-0ubuntu8.1", "libc-devtools": "2.39-0ubuntu8.1", "libc-devtools-dbgsym": "2.39-0ubuntu8.1", "libc6-s390": "2.39-0ubuntu8.1", "libc6-i386-dbgsym": "2.39-0ubuntu8.1", "libc6-dev-dbgsym": "2.39-0ubuntu8.1", "locales": "2.39-0ubuntu8.1", "libc-dev-bin-dbgsym": "2.39-0ubuntu8.1", "libc6-x32-dbgsym": "2.39-0ubuntu8.1" } ] }