ESB-2017.1563 - [UNIX/Linux][Ubuntu][Android] valgrind: Multiple vulnerabilities 2017-06-22

Printable version
PGP/GPG verifiable version

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

===========================================================================
             AUSCERT External Security Bulletin Redistribution

                               ESB-2017.1563
                         Valgrind vulnerabilities
                               22 June 2017

===========================================================================

        AusCERT Security Bulletin Summary
        ---------------------------------

Product:           valgrind
Publisher:         Ubuntu
Operating System:  Ubuntu
                   UNIX variants (UNIX, Linux, OSX)
                   Android
Impact/Access:     Execute Arbitrary Code/Commands -- Remote with User Interaction
                   Denial of Service               -- Remote with User Interaction
Resolution:        Patch/Upgrade
CVE Names:         CVE-2016-6131 CVE-2016-4493 CVE-2016-4492
                   CVE-2016-4491 CVE-2016-4490 CVE-2016-4489
                   CVE-2016-4488 CVE-2016-4487 CVE-2016-2226

Original Bulletin: 
   http://www.ubuntu.com/usn/usn-3337-1

Comment: This advisory references vulnerabilities in products which run on 
         platforms other than Ubuntu. It is recommended that administrators 
         running valgrind check for an updated version of the software for 
         their operating system.

- --------------------------BEGIN INCLUDED TEXT--------------------

==========================================================================
Ubuntu Security Notice USN-3337-1
June 21, 2017

valgrind vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- - Ubuntu 17.04
- - Ubuntu 16.10
- - Ubuntu 16.04 LTS
- - Ubuntu 14.04 LTS

Summary:

Valgrind could be made to crash or run programs if it opened a specially
crafted file.

Software Description:
- - valgrind: instrumentation framework for building dynamic analysis tools

Details:

It was discovered that Valgrind incorrectly handled certain string
operations. If a user or automated system were tricked into processing a
specially crafted binary, a remote attacker could possibly execute
arbitrary code. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04
LTS and Ubuntu 16.10. (CVE-2016-2226)

It was discovered that Valgrind incorrectly handled parsing certain
binaries. If a user or automated system were tricked into processing a
specially crafted binary, a remote attacker could use this issue to cause
Valgrind to crash, resulting in a denial of service. (CVE-2016-4487,
CVE-2016-4488, CVE-2016-4489, CVE-2016-4490, CVE-2016-4491, CVE-2016-4492,
CVE-2016-4493, CVE-2016-6131)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 17.04:
  valgrind                        1:3.12.0-1ubuntu1.1

Ubuntu 16.10:
  valgrind                        1:3.12.0~svn20160714-1ubuntu2.1

Ubuntu 16.04 LTS:
  valgrind                        1:3.11.0-1ubuntu4.2

Ubuntu 14.04 LTS:
  valgrind                        1:3.10.1-1ubuntu3~14.5

In general, a standard system update will make all the necessary changes.

References:
  https://www.ubuntu.com/usn/usn-3337-1
  CVE-2016-2226, CVE-2016-4487, CVE-2016-4488, CVE-2016-4489,
  CVE-2016-4490, CVE-2016-4491, CVE-2016-4492, CVE-2016-4493,
  CVE-2016-6131

Package Information:
  https://launchpad.net/ubuntu/+source/valgrind/1:3.12.0-1ubuntu1.1
  https://launchpad.net/ubuntu/+source/valgrind/1:3.12.0~svn20160714-1ubuntu2.1
  https://launchpad.net/ubuntu/+source/valgrind/1:3.11.0-1ubuntu4.2
  https://launchpad.net/ubuntu/+source/valgrind/1:3.10.1-1ubuntu3~14.5

- --------------------------END INCLUDED TEXT--------------------

You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.

NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members.  As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.

NOTE: This is only the original release of the security bulletin.  It may
not be updated when updates to the original are made.  If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.

Contact information for the authors of the original document is included
in the Security Bulletin above.  If you have any questions or need further
information, please contact them directly.

Previous advisories and external security bulletins can be retrieved from:

        http://www.auscert.org.au/render.html?cid=1980

===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072

Internet Email: auscert@auscert.org.au
Facsimile:      (07) 3365 7031
Telephone:      (07) 3365 4417 (International: +61 7 3365 4417)
                AusCERT personnel answer during Queensland business hours
                which are GMT+10:00 (AEST).
                On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967

iQIVAwUBWUsbmIx+lLeg9Ub1AQg5aQ//VfspMsQSF2ybcA0wLRqMiZBkYcywHbC3
dg3/2os0PKbRFs3RVGI/OqPb/RFyEhlHGbCIeWtzwJI+GMoLxiNXlfQSiKL45Pnk
FdG4iFiD0zAm4l76ijnxHTMLAQATCHYNSr5nqIJGdG3tJ5e3OLF3jj0AKjJBOCV7
7sRPWZMI7OK2LrXMLALOxiLiSK84OtzdRRERvP3tePp2sLFCkEMr6TLWWOokfV+n
t3+pQfBJ1xRqWEkPoLHdDk1N99wrFiluAmBohnK6OhAP0+V7WLRNRC5Beoel5YNJ
1Eo+fzelj63fFvhaUzc6XTJ91EL6lDNDHRQGciJGGAUa+M8phUR3UKE2J80Lbg4y
cdzAfsP7rBvEF4IVE9EhM9Q7d7X1mLIgAal/USXvRpUo0Oje0ge7qblAeZ5lbTei
0Ssyr2E82s2gQeCW5wDvtapkjS+lPBGur/Kp5xZSCK2bnS8k1psUPpsQLWVW2U8f
pC9wzUsVSnxR4YxhT4pavScVop10d/bvcwV/Kf/Vd3pXK8XYQdtMck3S/qLASL3W
gDylZiFbfADt4+uVYH6brpmLrvGhQYNQ81jO/kE47vf/Y9gLF8qop2YtCybb1xHr
gAz/l+gXXC82q6KTDXgcW1acIh5AyQKwxZcYM404wvUK5YQcMuPhlMJ/R5q8KcZS
CYUz1QPLE7w=
=Krnk
-----END PGP SIGNATURE-----

« Back to bulletins