USN-5688-2: Libksba vulnerability
26 October 2022
Libksba could be made to crash or run programs if it decoded specially crafted data.
- libksba - X.509 and CMS support library
USN-5688-1 fixed vulnerabilities in Libksba. This update provides
the corresponding update for Ubuntu 22.10.
Original advisory details:
It was discovered that an integer overflow could be triggered in Libksba
when decoding certain data. An attacker could use this issue to cause a
denial of service (application crash) or possibly execute arbitrary code.
- USN-5688-1: libksba, libksba-mingw-w64-dev, libksba-dev, libksba8