CVE-2014-3676

Publication date 22 October 2014

Last updated 24 July 2024

Ubuntu priority

Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the "tftp:// DHCPv6 boot option."

Status

Show unmaintained releases

Package	Ubuntu Release	Status
shim	15.04 vivid	Fixed 0.7-0ubuntu4
	14.10 utopic	Fixed 0.7-0ubuntu4
	14.04 LTS trusty	Fixed 0.8-0ubuntu2
	12.04 LTS precise	Fixed 0.8-0ubuntu2
	10.04 LTS lucid	Not in release

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

http://www.openwall.com/lists/oss-security/2014/10/13
https://www.cve.org/CVERecord?id=CVE-2014-3676