USN-7959-1 Unknown

USN-7959-1: klibc vulnerabilities

Canonical (Ubuntu) Released: January 14, 2026 Updated: January 15, 2026 Restart Required

Description

It was discovered that zlib, vendored in klibc, did not properly handle integer arithmetic. An attacker could possibly use this issue to execute arbitrary code or cause a denial of service.

Fixed Vulnerabilities 1

CVE-2016-9843 N/A 0.1 ⚠️ KEV fixed

May 23, 2017

The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calculation.

Quick Info

Patch ID: USN-7959-1

Vendor: Canonical (Ubuntu)

Severity: Unknown

CVEs Fixed: 1

Restart: Required

Vendor

Canonical (Ubuntu)

Additional Info

action:

usn id: USN-7959-1

summary: klibc could be made to crash if it received specially crafted input.

usn number: 7959-1

instructions: In general, a standard system update will make all the necessary changes.

CVE Vulnerabilities

Posts & Pages