Univention Bugzilla – Bug 44863
libffi: Multiple issues (4.1)
Last modified: 2019-04-11 19:24:55 CEST
Upstream Debian package version 3.0.10-3+deb7u2 fixes: * libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Please note that libffi is used by a number of other libraries (CVE-2017-1000376)
This issue has been filed against UCS 4.1. UCS 4.1 is out of maintenance and many UCS components have vastly changed in later releases. Thus, this issue is now being closed. If this issue still occurs in newer UCS versions, please use "Clone this bug" or reopen this issue. In this case please provide detailed information on how this issue is affecting you.