- Vulnerability/
- USN-6389-1
USN-6389-1: Indent vulnerability
First published: Wed Sep 20 2023(Updated: )
It was discovered that Indent incorrectly handled parsing certain source files. If a user or automated system were tricked into processing a specially crafted source file, a remote attacker could use this issue to cause Indent to crash, resulting in a denial of service, or possibly execute arbitrary code.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/indent | <2.2.12-4ubuntu0.1 | 2.2.12-4ubuntu0.1 |
| =23.04 | ||
| All of | ||
| ubuntu/indent | <2.2.12-1ubuntu0.22.04.1 | 2.2.12-1ubuntu0.22.04.1 |
| =22.04 | ||
| All of | ||
| ubuntu/indent | <2.2.12-1ubuntu0.20.04.1 | 2.2.12-1ubuntu0.20.04.1 |
| =20.04 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is USN-6389-1.
What is the title of the vulnerability?
The title of the vulnerability is Indent vulnerability.
How can this vulnerability be exploited?
This vulnerability can be exploited by tricking a user or automated system into processing a specially crafted source file.
What is the impact of this vulnerability?
The impact of this vulnerability is a denial of service or potentially the execution of arbitrary code.
How can I fix this vulnerability?
To fix this vulnerability, update the indent package to the specified version for your Ubuntu release.
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type
- collector/usn
- source/Ubuntu
- agent/software-canonical-lookup
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/23.04
- version/ubuntu ubuntu/22.04
- version/ubuntu ubuntu/20.04