Not a user yet?
Log in Register for free Suggest a product
The manufacturer Canonical has not yet set up its devicebase profile. Content such as updates, compatibilities and support may only be maintained with a delay.
Update

USN-7151-1: oFono vulnerabilities

Ubuntu DesktopUbuntu Desktop
Canonical
Update from patrick-devicebaseUpdate from:
patrick-devicebase (expert)

USN-7151-1: oFono vulnerabilities
11 December 2024

Several security issues were fixed in ofono.

Releases
Ubuntu 24.10 Ubuntu 24.04 LTS Ubuntu 22.04 LTS Ubuntu 20.04 LTS Ubuntu 18.04 ESM Ubuntu 16.04 ESM

Packages
ofono - Mobile telephony stack

Details
It was discovered that oFono incorrectly handled decoding SMS messages
leading to a stack overflow. A remote attacker could potentially use
this issue to cause a denial of service. (CVE-2023-4232, CVE-2023-4235)

Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Learn more about Ubuntu Pro

Update instructions
The problem can be corrected by updating your system to the following package versions:

Ubuntu 24.10

  • ofono - 1.31-3ubuntu3.24.10.2
    Ubuntu 24.04
  • ofono - 1.31-3ubuntu3.24.04.2
    Ubuntu 22.04
  • ofono - 1.31-3ubuntu1.2
    Ubuntu 20.04
  • ofono - 1.31-2ubuntu1+esm2
    Ubuntu 18.04
  • ofono - 1.21-1ubuntu1+esm2
    Ubuntu 16.04
  • ofono - 1.17.bzr6912+16.04.20160314.3-0ubuntu1+esm2

After a standard system update you need to restart oFono to make
all the necessary changes.

Version: 24.04 LTS Link
More updatesTo the product
Receive Important Update Messages Stay tuned for upcoming Canonical Ubuntu Desktop updates

Was the content helpful to you?

Advertisement Advertise here?
Udemy IT certification ad