USN-5787-1: Libksba vulnerability
5 January 2023
Libksba could be made to crash or run programs if it processed specially crafted data.
- libksba - X.509 and CMS support library
It was discovered that Libksba incorrectly handled parsing CRL signatures.
A remote attacker could use this issue to cause Libksba to crash, resulting
in a denial of service, or possibly execute arbitrary code.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.
- USN-5787-2: libksba, libksba-dev, libksba8