Ubuntu Security Notice 6746-2 - USN-6746-1 fixed vulnerabilities in Google Guest Agent and Google OS Config Agent. This update provides the corresponding update for Ubuntu 24.04 LTS. It was discovered that Google Guest Agent and Google OS Config Agent incorrectly handled certain JSON files. An attacker could possibly use this issue to cause a denial of service.
3968d51c2ae666e985ae93fbab6ef8f7ce300c27c13fec3666a09dc4114b93a9
==========================================================================
Ubuntu Security Notice USN-6746-2
June 25, 2024
google-guest-agent, google-osconfig-agent vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 24.04 LTS
Summary:
Google Guest Agent and OS Config Agent could be made to crash
if it open a specially crafted JSON.
Software Description:
- google-guest-agent: Google Compute Engine Guest Agent
- google-osconfig-agent: Google OS Config Agent
Details:
USN-6746-1 fixed vulnerabilities in Google Guest Agent and Google
OS Config Agent. This update provides the corresponding update for
Ubuntu 24.04 LTS.
Original advisory details:
It was discovered that Google Guest Agent and Google OS Config Agent incorrectly
handled certain JSON files. An attacker could possibly use this issue to
cause a denial of service.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 24.04 LTS
google-guest-agent 20240213.00-0ubuntu3.1
google-osconfig-agent 20240320.00-0ubuntu1~24.04.1
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-6746-2
https://ubuntu.com/security/notices/USN-6746-1
CVE-2024-24786
Package Information:
https://launchpad.net/ubuntu/+source/google-guest-agent/20240213.00-0ubuntu3.1
https://launchpad.net/ubuntu/+source/google-osconfig-agent/20240320.00-0ubuntu1~24.04.1