USN-6493-1

Source
https://ubuntu.com/security/notices/USN-6493-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6493-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-6493-1
Published
2023-11-21T12:59:06Z
Modified
2026-02-10T04:43:25Z
Summary
hibagent update
Details

On Ubuntu 20.04 LTS and Ubuntu 22.04 LTS, the hibagent package has been updated to add IMDSv2 support, as IMDSv1 uses an insecure protocol and is no longer recommended.

In addition, on all releases, hibagent has been updated to do nothing if ODH is configured.

References

Affected packages

Ubuntu:20.04:LTS / hibagent

Package

Name
hibagent
Purl
pkg:deb/ubuntu/hibagent@1.0.1-0ubuntu1.20.04.2?arch=source&distro=focal

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.0.1-0ubuntu1.20.04.2

Affected versions

1.*
1.0.1-0ubuntu1
1.0.1-0ubuntu1.20.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "1.0.1-0ubuntu1.20.04.2",
            "binary_name": "hibagent"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6493-1.json"
cves_map
{
    "cves": [],
    "ecosystem": "Ubuntu:20.04:LTS"
}

Ubuntu:22.04:LTS / hibagent

Package

Name
hibagent
Purl
pkg:deb/ubuntu/hibagent@1.0.1-0ubuntu2.22.04.2?arch=source&distro=jammy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.0.1-0ubuntu2.22.04.2

Affected versions

1.*
1.0.1-0ubuntu2
1.0.1-0ubuntu2.22.04.1

Ecosystem specific

{
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_version": "1.0.1-0ubuntu2.22.04.2",
            "binary_name": "hibagent"
        }
    ]
}

Database specific

source
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-6493-1.json"
cves_map
{
    "cves": [],
    "ecosystem": "Ubuntu:22.04:LTS"
}