Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CVE-2024-2961 #76

Open
lisenet opened this issue Jul 2, 2024 · 0 comments
Open

CVE-2024-2961 #76

lisenet opened this issue Jul 2, 2024 · 0 comments
Assignees
@lisenet
Labels
security Security related feature or request

Comments

@lisenet
Copy link
Owner

lisenet commented Jul 2, 2024

https://nvd.nist.gov/vuln/detail/CVE-2024-2961

Check if the system has the compromised set, running iconv -l | grep -E 'CN-?EXT'.

If there is no output, the system is safe to this vulnerability. If the output is similar to the one below, the system is vulnerable. Read below for the steps to fix it.

$ iconv -l | grep -E 'CN-?EXT'
ISO-2022-CN-EXT//
ISO2022CNEXT//

Browse to /usr/lib64/gconv/gconv-modules.d.

Edit gconv-modules-extra.conf.

Go to line 1254 and comment out the following:

 alias ISO2022CNEXT//          ISO-2022-CN-EXT//
 module        ISO-2022-CN-EXT//       INTERNAL                ISO-2022-CN-EXT 1
 module        INTERNAL                ISO-2022-CN-EXT//       ISO-2022-CN-EXT 1

Do sudo iconvconfig to regenerate the cache.

Now, running iconv -l | grep -E 'CN-?EXT' should return no output.
@lisenet lisenet added the security Security related feature or request label Jul 2, 2024
@lisenet lisenet self-assigned this Jul 2, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@lisenet lisenet

Labels
security Security related feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@lisenet