Solution
Please Install the Updated Packages.
Insight
Abhishek Arya discovered that NSPR incorrectly handled certain console functions. A remote attacker could use this issue to cause NSPR to crash, resulting in a denial of service, or possibly execute arbitrary code.
The default compiler options for affected releases should reduce the vulnerability to a denial of service.
Affected
nspr on Ubuntu 14.04 LTS ,
Ubuntu 13.10 ,
Ubuntu 12.04 LTS ,
Ubuntu 10.04 LTS
Severity
Classification
-
CVE CVE-2014-1545 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities