USN-3708-1: OpenSLP vulnerabilities

09 July 2018

OpenSLP could be made to crash or run programs if it received specially crafted network traffic.

Releases

Packages

Details

It was discovered that OpenSLP incorrectly handled certain memory
operations. A remote attacker could use this issue to cause OpenSLP to
crash, resulting in a denial of service, or possibly execute arbitrary
code.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 16.04
Ubuntu 14.04

In general, a standard system update will make all the necessary changes.