[USN-6746-1] Google Guest Agent and Google OS Config Agent vulnerability

  1. Home
  2. Security Advisories
  3. Ubuntu
  4. USN-6746-1
Affected Packages 4
CVEs 1
Info Packages Vulnerabilities

Google Guest Agent and OS Config Agent could be made to crash if it open a specially crafted JSON.

It was discovered that Google Guest Agent and Google OS Config Agent incorrectly
handled certain JSON files. An attacker could possibly use this issue to
cause a denial of service.

Package Affected Version
pkg:deb/ubuntu/google-osconfig-agent?distro=mantic < 20230504.00-0ubuntu2.2
pkg:deb/ubuntu/google-osconfig-agent?distro=jammy < 20230504.00-0ubuntu1~22.04.1
pkg:deb/ubuntu/google-guest-agent?distro=mantic < 20231004.02-0ubuntu1~23.10.3
pkg:deb/ubuntu/google-guest-agent?distro=jammy < 20231004.02-0ubuntu1~22.04.4
ID
USN-6746-1
URL
https://ubuntu.com/security/notices/USN-6746-1
Published
2024-04-23T11:38:08
(3 months ago)
Modified
2024-04-23T11:38:08
(3 months ago)
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:deb/ubuntu/google-osconfig-agent?distro=mantic ubuntu google-osconfig-agent < 20230504.00-0ubuntu2.2 mantic
Affected pkg:deb/ubuntu/google-osconfig-agent?distro=jammy ubuntu google-osconfig-agent < 20230504.00-0ubuntu1~22.04.1 jammy
Affected pkg:deb/ubuntu/google-guest-agent?distro=mantic ubuntu google-guest-agent < 20231004.02-0ubuntu1~23.10.3 mantic
Affected pkg:deb/ubuntu/google-guest-agent?distro=jammy ubuntu google-guest-agent < 20231004.02-0ubuntu1~22.04.4 jammy
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date