[USN-4574-1] libseccomp-golang vulnerability
mike.salvatore at canonical.com
Wed Oct 7 19:39:24 UTC 2020
Ubuntu Security Notice USN-4574-1
October 07, 2020
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 16.04 LTS
A system hardening measure could be bypassed.
- golang-github-seccomp-libseccomp-golang: a Go-based interface to the libseccomp library
It was discovered that libseccomp-golang did not properly generate BPFs. If
a process were running under a restrictive seccomp filter that specified
multiple syscall arguments, the application could potentially bypass the
intended restrictions put in place by seccomp.
The problem can be corrected by updating your system to the following
Ubuntu 16.04 LTS:
After a standard system update anything that depends on libseccomp-golang needs
to be rebuilt to make all the necessary changes.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 833 bytes
Desc: OpenPGP digital signature
More information about the ubuntu-security-announce