-
Operating System: Ubuntu ≈ Packet Storm
May 13, 2024 | 17:18 pm
Ubuntu Security Notice 6771-1 - It was discovered that SQL parse incorrectly handled certain nested lists. An attacker could possibly use this issue to cause a denial of service.
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
May 10, 2024 | 15:30 pm
Ubuntu Security Notice 6769-1 - Le Dinh Hai discovered that Spreadsheet::ParseXLSX did not properly manage memory during cell merge operations. An attacker could possibly use this issue to consume large amounts of memory, resulting in a denial of service condition.[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
May 9, 2024 | 15:48 pm
Ubuntu Security Notice 6768-1 - Alicia Boya García discovered that GLib incorrectly handled signal subscriptions. A local attacker could use this issue to spoof D-Bus signals resulting in a variety of impacts including possible privilege escalation.
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
May 9, 2024 | 15:44 pm
Ubuntu Security Notice 6766-1 - It was discovered that the Open vSwitch implementation in the Linux kernel could overflow its stack during recursive action operations under certain conditions. A local attacker could use this to cause a denial of service.[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
May 9, 2024 | 15:43 pm
Ubuntu Security Notice 6767-1 - Chenyuan Yang discovered that the RDS Protocol implementation in the Linux kernel contained an out-of-bounds read vulnerability. An attacker could use this to possibly cause a denial of service. Several security issues were discovered in[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
May 9, 2024 | 15:42 pm
Ubuntu Security Notice 6754-2 - USN-6754-1 fixed vulnerabilities in nghttp2. This update provides the corresponding update for Ubuntu 24.04 LTS. It was discovered that nghttp2 incorrectly handled the HTTP/2 implementation. A remote attacker could possibly use this issue to cause[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
May 9, 2024 | 15:41 pm
Ubuntu Security Notice 6763-1 - Martin Å irokov discovered that libvirt incorrectly handled certain memory operations. A local attacker could possibly use this issue to access virtproxyd without authorization.
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
May 3, 2024 | 14:34 pm
Ubuntu Security Notice 6757-2 - USN-6757-1 fixed vulnerabilities in PHP. Unfortunately these fixes were incomplete for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 23.10. This update fixes the problem. It was discovered that PHP incorrectly handled PHP_CLI_SERVER_WORKERS variable. An[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
May 3, 2024 | 14:33 pm
Ubuntu Security Notice 6762-1 - It was discovered that GNU C Library incorrectly handled netgroup requests. An attacker could possibly use this issue to cause a crash or execute arbitrary code. This issue only affected Ubuntu 14.04 LTS. It was[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
May 2, 2024 | 13:56 pm
Ubuntu Security Notice 6747-2 - USN-6747-1 fixed vulnerabilities in Firefox. The update introduced several minor regressions. This update fixes the problem. Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
May 1, 2024 | 15:30 pm
Ubuntu Security Notice 6760-1 - George-Andrei Iosif and David Fernandez Gonzalez discovered that Gerbv did not properly initialize a data structure when parsing certain nested RS-274X format files. If a user were tricked into opening a specially crafted file, an[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Apr 30, 2024 | 15:53 pm
Ubuntu Security Notice 6761-1 - It was discovered that Anope did not properly process credentials for suspended accounts. An attacker could possibly use this issue to normally login to the platform as a suspended user after changing their password.
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Apr 30, 2024 | 15:52 pm
Ubuntu Security Notice 6757-1 - It was discovered that PHP incorrectly handled PHP_CLI_SERVER_WORKERS variable. An attacker could possibly use this issue to cause a crash or execute arbitrary code. This issue only affected Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS.[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Apr 29, 2024 | 14:52 pm
Ubuntu Security Notice 6744-3 - USN-6744-1 fixed a vulnerability in Pillow. This update provides the corresponding updates for Ubuntu 24.04 LTS. Hugo van Kemenade discovered that Pillow was not properly performing bounds checks when processing an ICC file, which could[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Apr 29, 2024 | 14:51 pm
Ubuntu Security Notice 6733-2 - USN-6733-1 fixed vulnerabilities in GnuTLS. This update provides the corresponding updates for Ubuntu 24.04 LTS. It was discovered that GnuTLS had a timing side-channel when performing certain ECDSA operations. A remote attacker could possibly use[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Apr 29, 2024 | 14:48 pm
Ubuntu Security Notice 6718-3 - USN-6718-1 fixed vulnerabilities in curl. This update provides the corresponding updates for Ubuntu 24.04 LTS. Dan Fandrich discovered that curl would incorrectly use the default set of protocols when a parameter option disabled all protocols[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Apr 29, 2024 | 14:47 pm
Ubuntu Security Notice 6756-1 - It was discovered that less mishandled newline characters in file names. If a user or automated system were tricked into opening specially crafted files, an attacker could possibly use this issue to execute arbitrary commands[…]
Read more...