========================================================================== Ubuntu Security Notice USN-4001-1 May 30, 2019 libseccomp vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 19.04 - Ubuntu 18.10 - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: libseccomp could allow unintended access to system calls. Software Description: - libseccomp: library for working with the Linux seccomp filter Details: Jann Horn discovered that libseccomp did not correctly generate 64-bit syscall argument comparisons with arithmetic operators (LT, GT, LE, GE). An attacker could use this to bypass intended access restrictions for argument-filtered system calls. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 19.04: libseccomp2 2.4.1-0ubuntu0.19.04.3 Ubuntu 18.10: libseccomp2 2.4.1-0ubuntu0.18.10.3 Ubuntu 18.04 LTS: libseccomp2 2.4.1-0ubuntu0.18.04.2 Ubuntu 16.04 LTS: libseccomp2 2.4.1-0ubuntu0.16.04.2 This update uses a new upstream release which includes additional bug fixes. In general, a standard system update will make all the necessary changes. References: https://usn.ubuntu.com/usn/usn-4001-1 CVE-2019-9893 Package Information: https://launchpad.net/ubuntu/+source/libseccomp/2.4.1-0ubuntu0.19.04.3 https://launchpad.net/ubuntu/+source/libseccomp/2.4.1-0ubuntu0.18.10.3 https://launchpad.net/ubuntu/+source/libseccomp/2.4.1-0ubuntu0.18.04.2 https://launchpad.net/ubuntu/+source/libseccomp/2.4.1-0ubuntu0.16.04.2