logo
DATABASE RESOURCES PRICING ABOUT US

LZ4 vulnerability

Description

USN-4968-1 fixed a vulnerability in LZ4. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that LZ4 incorrectly handled certain memory operations. If a user or automated system were tricked into uncompressing a specially- crafted LZ4 file, a remote attacker could use this issue to cause LZ4 to crash, resulting in a denial of service, or possibly execute arbitrary code.


Affected Package


OS OS Version Package Name Package Version
Ubuntu 16.04 liblz4-1 0.0~r131-2ubuntu2+esm1 Available with UA Infra or UA Desktop
Ubuntu 16.04 liblz4-1 0.0~r131-2ubuntu2+esm1
Ubuntu 16.04 liblz4-1-dbg 0.0~r131-2ubuntu2+esm1
Ubuntu 16.04 liblz4-1-dbgsym 0.0~r131-2ubuntu2+esm1
Ubuntu 16.04 liblz4-dev 0.0~r131-2ubuntu2+esm1
Ubuntu 16.04 liblz4-dev-dbgsym 0.0~r131-2ubuntu2+esm1
Ubuntu 16.04 liblz4-tool 0.0~r131-2ubuntu2+esm1
Ubuntu 16.04 liblz4-tool-dbgsym 0.0~r131-2ubuntu2+esm1
Ubuntu 14.04 liblz4-1 0.0~r114-2ubuntu1+esm2 Available with UA Infra or UA Desktop
Ubuntu 14.04 liblz4-1 0.0~r114-2ubuntu1+esm2
Ubuntu 14.04 liblz4-1-dbg 0.0~r114-2ubuntu1+esm2
Ubuntu 14.04 liblz4-dev 0.0~r114-2ubuntu1+esm2
Ubuntu 14.04 liblz4-tool 0.0~r114-2ubuntu1+esm2

Related