{"id":2438,"date":"2018-11-03T00:47:14","date_gmt":"2018-11-03T00:47:14","guid":{"rendered":"https:\/\/www.appservgrid.com\/paw92\/?p=2438"},"modified":"2018-11-04T08:11:48","modified_gmt":"2018-11-04T08:11:48","slug":"ubuntu-3805-2-curl-vulnerability-the-communitys-center-for-security","status":"publish","type":"post","link":"https:\/\/www.appservgrid.com\/paw92\/index.php\/2018\/11\/03\/ubuntu-3805-2-curl-vulnerability-the-communitys-center-for-security\/","title":{"rendered":"Ubuntu 3805-2: curl vulnerability &#8211; The Community&#8217;s Center for Security"},"content":{"rendered":"<p><b> Posted by<\/b> Anthony Pell<\/p>\n<p><a href=\"\/content\/blogcategory\/172\/168\/\"><img decoding=\"async\" src=\"http:\/\/www.linuxsecurity.com\/images\/stories\/icons\/ubuntu-icon.gif\" alt=\"Ubuntu\" \/><\/a><br \/>\nSeveral security issues were fixed in curl. ==========================================================================<br \/>\nUbuntu Security Notice USN-3805-2<br \/>\nNovember 01, 2018<\/p>\n<p>curl vulnerability<br \/>\n==========================================================================<\/p>\n<p>A security issue affects these releases of Ubuntu and its derivatives:<\/p>\n<p>&#8211; Ubuntu 12.04 ESM<\/p>\n<p>Summary:<\/p>\n<p>Several security issues were fixed in curl.<\/p>\n<p>Software Description:<br \/>\n&#8211; curl: HTTP, HTTPS, and FTP client and client libraries<\/p>\n<p>Details:<\/p>\n<p>USN-3805-1 fixed a vulnerability in curl. This update provides<br \/>\nthe corresponding update for Ubuntu 12.04 ESM.<\/p>\n<p>Original advisory details:<\/p>\n<p>Brian Carpenter discovered that the curl command-line tool incorrectly<br \/>\nhandled error messages. A remote attacker could possibly use this<br \/>\nissue to obtain sensitive information. (CVE-2018-16842)<\/p>\n<p>Update instructions:<\/p>\n<p>The problem can be corrected by updating your system to the following<br \/>\npackage versions:<\/p>\n<p>Ubuntu 12.04 ESM:<br \/>\ncurl 7.22.0-3ubuntu4.24<br \/>\nlibcurl3 7.22.0-3ubuntu4.24<br \/>\nlibcurl3-gnutls 7.22.0-3ubuntu4.24<br \/>\nlibcurl3-nss 7.22.0-3ubuntu4.24<\/p>\n<p>In general, a standard system update will make all the necessary<br \/>\nchanges.<\/p>\n<p>References:<br \/>\nhttps:\/\/usn.ubuntu.com\/usn\/usn-3805-2<br \/>\nhttps:\/\/usn.ubuntu.com\/usn\/usn-3805-1<br \/>\nCVE-2018-16842<\/p>\n<p><a href=\"http:\/\/www.linuxsecurity.com\/content\/view\/214689?rdf\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Posted by Anthony Pell Several security issues were fixed in curl. ========================================================================== Ubuntu Security Notice USN-3805-2 November 01, 2018 curl vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: &#8211; Ubuntu 12.04 ESM Summary: Several security issues were fixed in curl. Software Description: &#8211; curl: HTTP, HTTPS, and FTP client and &hellip; <\/p>\n<p class=\"link-more\"><a href=\"https:\/\/www.appservgrid.com\/paw92\/index.php\/2018\/11\/03\/ubuntu-3805-2-curl-vulnerability-the-communitys-center-for-security\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;Ubuntu 3805-2: curl vulnerability &#8211; The Community&#8217;s Center for Security&#8221;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-2438","post","type-post","status-publish","format-standard","hentry","category-linux"],"_links":{"self":[{"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/posts\/2438","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/comments?post=2438"}],"version-history":[{"count":1,"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/posts\/2438\/revisions"}],"predecessor-version":[{"id":2536,"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/posts\/2438\/revisions\/2536"}],"wp:attachment":[{"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/media?parent=2438"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/categories?post=2438"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.appservgrid.com\/paw92\/index.php\/wp-json\/wp\/v2\/tags?post=2438"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}