- Vulnerability/
- USN-6423-2
USN-6423-2: CUE vulnerability
First published: Tue Oct 17 2023(Updated: )
USN-6423-1 fixed a vulnerability in CUE. This update provides the corresponding updates for Ubuntu 23.10. Original advisory details: It was discovered that CUE incorrectly handled certain files. An attacker could possibly use this issue to expose sensitive information or execute arbitrary code.
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| ubuntu/libcue2 | <2.2.1-4ubuntu1 | 2.2.1-4ubuntu1 |
| Ubuntu Ubuntu | =23.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability in CUE?
The vulnerability in CUE allows for the exposure of sensitive information or the execution of arbitrary code.
How does the CUE vulnerability impact Ubuntu 23.10?
The CUE vulnerability impacts Ubuntu 23.10 by allowing potential exposure of sensitive information or execution of arbitrary code.
What is the severity of USN-6423-2?
The severity of USN-6423-2 is not specified.
How can I fix the CUE vulnerability in Ubuntu 23.10?
To fix the CUE vulnerability in Ubuntu 23.10, update the libcue2 package to version 2.2.1-4ubuntu1 or later.
Where can I find more information about USN-6423-2?
More information about USN-6423-2 can be found at the Ubuntu Security Notices website.
- collector/usn
- anchor-related/USN-6423-1
- agent/references
- agent/severity
- agent/title
- agent/type
- agent/event
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- agent/trending
- package-manager/ubuntu
- vendor/ubuntu
- canonical/ubuntu ubuntu
- version/ubuntu ubuntu/23.10