vulnerability
Ubuntu: USN-4038-4: bzip2 regression
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Jul 4, 2019 | Jul 5, 2019 | Feb 19, 2025 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Jul 4, 2019
Added
Jul 5, 2019
Modified
Feb 19, 2025
Description
USN-4038-1 fixed a vulnerability in bzip2. The update introduced a regression causing bzip2 to incorrect raises CRC errors for some files. This update provides the corresponding update for Ubuntu 12.04 ESM and 14.04 ESM.
We apologize for the inconvenience.
Original advisory details:
It was discovered that bzip2 incorrectly handled certain files. An attacker could possibly use this issue to execute arbitrary code.
Solutions
ubuntu-upgrade-bzip2ubuntu-upgrade-lib32bz2-1-0ubuntu-upgrade-lib64bz2-1-0ubuntu-upgrade-libbz2-1-0
References
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.