Summary
Ubuntu Update for Linux kernel vulnerabilities USN-534-1
Solution
Please Install the Updated Packages.
Insight
Andy Polyakov discovered that the DTLS implementation in OpenSSL was vulnerable. A remote attacker could send a specially crafted connection request to services using DTLS and execute arbitrary code with the service's privileges. There are no known Ubuntu applications that are currently using DTLS.
Affected
openssl vulnerability on Ubuntu 6.06 LTS ,
Ubuntu 6.10 ,
Ubuntu 7.04 ,
Ubuntu 7.10
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2007-4995 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities