USN-365-1: libksba vulnerability

16 October 2006

libksba vulnerability

Releases

Details

A parsing failure was discovered in the handling of X.509 certificates
that contained extra trailing data. Malformed or malicious certificates
could cause services using libksba to crash, potentially creating a
denial of service.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 5.04
  • libksba8 - 0.9.9-2ubuntu0.5.04

After a standard system upgrade you need to restart your session to
effect the necessary changes.

References