Home / vulnerabilities Ubuntu Security Notice USN-2913-2
Posted on 25 February 2016
Source : packetstormsecurity.org Link
============================================================================
Ubuntu Security Notice USN-2913-2
February 24, 2016
glib-networking update
============================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 15.10
- Ubuntu 14.04 LTS
- Ubuntu 12.04 LTS
Summary:
Updated glib-networking packages are required for the USN-2913-1 update.
Software Description:
- glib-networking: network-related giomodules for GLib
Details:
USN-2913-1 removed 1024-bit RSA CA certificates from the ca-certificates
package. This update adds support for alternate certificate chains to the
glib-networking package to properly handle the removal.
Original advisory details:
The ca-certificates package contained outdated CA certificates. This update
refreshes the included certificates to those contained in the 20160104
package, including the removal of the SPI CA and CA certificates with
1024-bit RSA keys.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 15.10:
glib-networking 2.46.0-1ubuntu0.1
Ubuntu 14.04 LTS:
glib-networking 2.40.0-1ubuntu0.1
Ubuntu 12.04 LTS:
glib-networking 2.32.1-1ubuntu2.1
In general, a standard system update will make all the necessary changes.
References:
http://www.ubuntu.com/usn/usn-2913-2
http://www.ubuntu.com/usn/usn-2913-1
https://launchpad.net/bugs/1528645
Package Information:
https://launchpad.net/ubuntu/+source/glib-networking/2.46.0-1ubuntu0.1
https://launchpad.net/ubuntu/+source/glib-networking/2.40.0-1ubuntu0.1
https://launchpad.net/ubuntu/+source/glib-networking/2.32.1-1ubuntu2.1
