vulnerability
Ubuntu: USN-4038-4: bzip2 regression
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Jul 4, 2019 | Jul 5, 2019 | Feb 19, 2025 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Jul 4, 2019
Added
Jul 5, 2019
Modified
Feb 19, 2025
Description
USN-4038-1 fixed a vulnerability in bzip2. The update introduced a regression causing bzip2 to incorrect raises CRC errors for some files. This update provides the corresponding update for Ubuntu 12.04 ESM and 14.04 ESM.
We apologize for the inconvenience.
Original advisory details:
It was discovered that bzip2 incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code.
Solutions
ubuntu-upgrade-bzip2ubuntu-upgrade-lib32bz2-1-0ubuntu-upgrade-lib64bz2-1-0ubuntu-upgrade-libbz2-1-0
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.