Ubuntu security notices

These are the Ubuntu security notices that affect the current supported releases of Ubuntu. These notices are also posted to the ubuntu-security-announce mailing list (list archive). To report a security vulnerability in an Ubuntu package, please file a bug, or contact security@ubuntu.com. You may also be interested in learning about Ubuntu security policies. For more details on a specific CVE or source package, please see the Ubuntu CVE Tracker.

You can also view the latest notices by subscribing to the RSS or the Atom feeds.

Showing page 1 of 55   Next >
Show: All  

USN-2448-1: Linux kernel vulnerabilities - 12th December 2014

An information leak in the Linux kernel was discovered that could leak the high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine (KVM) paravirt guests. A user in the guest OS could exploit this leak to obtain information that could potentially be used to aid in ...

CVE-2014-3673 CVE-2014-3687 CVE-2014-3688 CVE-2014-7825 CVE-2014-7826 CVE-2014-7970 CVE-2014-8086 CVE-2014-8134 CVE-2014-8369 CVE-2014-9090

USN-2447-1: Linux kernel (Utopic HWE) vulnerabilities - 12th December 2014

An information leak in the Linux kernel was discovered that could leak the high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine (KVM) paravirt guests. A user in the guest OS could exploit this leak to obtain information that could potentially be used to aid in ...

CVE-2014-3673 CVE-2014-3687 CVE-2014-3688 CVE-2014-7825 CVE-2014-7826 CVE-2014-7970 CVE-2014-8086 CVE-2014-8134 CVE-2014-8369 CVE-2014-9090

USN-2446-1: Linux kernel vulnerabilities - 12th December 2014

An information leak in the Linux kernel was discovered that could leak the high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine (KVM) paravirt guests. A user in the guest OS could exploit this leak to obtain information that could potentially be used to aid in ...

CVE-2014-3673 CVE-2014-3687 CVE-2014-3688 CVE-2014-7825 CVE-2014-7826 CVE-2014-8134 CVE-2014-8369 CVE-2014-9090

USN-2445-1: Linux kernel (Trusty HWE) vulnerabilities - 12th December 2014

An information leak in the Linux kernel was discovered that could leak the high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine (KVM) paravirt guests. A user in the guest OS could exploit this leak to obtain information that could potentially be used to aid in ...

CVE-2014-3673 CVE-2014-3687 CVE-2014-3688 CVE-2014-7825 CVE-2014-7826 CVE-2014-8134 CVE-2014-8369 CVE-2014-9090

USN-2444-1: Linux kernel (OMAP4) vulnerabilities - 12th December 2014

An information leak in the Linux kernel was discovered that could leak the high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine (KVM) paravirt guests. A user in the guest OS could exploit this leak to obtain information that could potentially be used to aid in ...

CVE-2014-7825 CVE-2014-7826 CVE-2014-7841 CVE-2014-8134 CVE-2014-8884 CVE-2014-9090

USN-2443-1: Linux kernel vulnerabilities - 12th December 2014

An information leak in the Linux kernel was discovered that could leak the high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine (KVM) paravirt guests. A user in the guest OS could exploit this leak to obtain information that could potentially be used to aid in ...

CVE-2014-7825 CVE-2014-7826 CVE-2014-7841 CVE-2014-8134 CVE-2014-8884 CVE-2014-9090

USN-2442-1: Linux kernel (EC2) vulnerabilities - 12th December 2014

An information leak in the Linux kernel was discovered that could leak the high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine (KVM) paravirt guests. A user in the guest OS could exploit this leak to obtain information that could potentially be used to aid in ...

CVE-2014-3673 CVE-2014-3687 CVE-2014-3688 CVE-2014-7841 CVE-2014-8134 CVE-2014-8709 CVE-2014-8884 CVE-2014-9090

USN-2441-1: Linux kernel vulnerabilities - 12th December 2014

An information leak in the Linux kernel was discovered that could leak the high 16 bits of the kernel stack address on 32-bit Kernel Virtual Machine (KVM) paravirt guests. A user in the guest OS could exploit this leak to obtain information that could potentially be used to aid in ...

CVE-2014-3673 CVE-2014-3687 CVE-2014-3688 CVE-2014-7841 CVE-2014-8134 CVE-2014-8709 CVE-2014-8884 CVE-2014-9090

USN-2440-1: Mutt vulnerability - 11th December 2014

Jakub Wilk discovered that the write_one_header function in mutt did not properly handle newline characters at the beginning of a header. An attacker could specially craft an email to cause mutt to crash, resulting in a denial of service.

CVE-2014-9116

USN-2439-1: QEMU vulnerabilities - 11th December 2014

Michael S. Tsirkin discovered that QEMU incorrectly handled certain parameters during ram load while performing a migration. An attacker able to manipulate savevm data could use this issue to possibly execute arbitrary code on the host. This issue only affected Ubuntu 12.04 LTS, Ubuntu 14.04 LTS, and Ubuntu 14.10. (CVE-2014-7840) ...

CVE-2014-7840 CVE-2014-8106

USN-2438-1: NVIDIA graphics drivers vulnerabilities - 10th December 2014

It was discovered that the NVIDIA graphics drivers incorrectly handled GLX indirect rendering support. An attacker able to connect to an X server, either locally or remotely, could use these issues to cause the X server to crash or execute arbitrary code resulting in possible privilege escalation.

CVE-2014-8091 CVE-2014-8098 CVE-2014-8298

USN-2436-2: X.Org X server vulnerabilities - 9th December 2014

USN-2436-1 fixed vulnerabilities in the X.Org X server. Since publication, additional fixes have been made available for these issues. This update adds the additional fixes. Original advisory details: Ilja van Sprundel discovered a multitude of security issues in the X.Org X server. An attacker able to connect to an X ...

LP: 1400942

USN-2437-1: Bind vulnerability - 9th December 2014

Florian Maury discovered that Bind incorrectly handled delegation. A remote attacker could possibly use this issue to cause Bind to consume resources and crash, resulting in a denial of service.

CVE-2014-8500

USN-2436-1: X.Org X server vulnerabilities - 9th December 2014

Ilja van Sprundel discovered a multitude of security issues in the X.Org X server. An attacker able to connect to an X server, either locally or remotely, could use these issues to cause the X server to crash or execute arbitrary code resulting in possible privilege escalation.

CVE-2014-8091 CVE-2014-8092 CVE-2014-8093 CVE-2014-8094 CVE-2014-8095 CVE-2014-8096 CVE-2014-8097 CVE-2014-8098 CVE-2014-8099 CVE-2014-8100 CVE-2014-8101 CVE-2014-8102 CVE-2014-8103

USN-2435-1: Graphviz vulnerability - 8th December 2014

It was discovered that graphviz incorrectly handled parsing errors. An attacker could use this issue to cause graphviz to crash or possibly execute arbitrary code.

CVE-2014-9157

USN-2434-2: Ghostscript vulnerability - 8th December 2014

USN-2434-1 fixed a vulnerability in JasPer. This update provides the corresponding fix for the JasPer library embedded in the Ghostscript package. Original advisory details: Jose Duart discovered that JasPer incorrectly handled certain malformed JPEG-2000 image files. If a user were tricked into opening a specially crafted JPEG-2000 image file, a ...

CVE-2014-9029

USN-2434-1: JasPer vulnerability - 8th December 2014

Jose Duart discovered that JasPer incorrectly handled certain malformed JPEG-2000 image files. If a user were tricked into opening a specially crafted JPEG-2000 image file, a remote attacker could cause JasPer to crash or possibly execute arbitrary code with user privileges.

CVE-2014-9029

USN-2431-2: MAAS regression - 4th December 2014

USN-2431-1 fixed vulnerabilities in mod_wsgi. The security update exposed an issue in the MAAS package, causing a regression. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that mod_wsgi incorrectly handled errors when setting up the working directory and group access rights. A ...

LP: 1399016

USN-2433-1: tcpdump vulnerabilities - 4th December 2014

Steffen Bauch discovered that tcpdump incorrectly handled printing OSLR packets. A remote attacker could use this issue to cause tcpdump to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2014-8767) Steffen Bauch discovered that tcpdump incorrectly handled printing GeoNet packets. A remote attacker could use this ...

CVE-2014-8767 CVE-2014-8768 CVE-2014-8769 CVE-2014-9140

USN-2432-1: GNU C Library vulnerabilities - 3rd December 2014

Siddhesh Poyarekar discovered that the GNU C Library incorrectly handled certain multibyte characters when using the iconv function. An attacker could possibly use this issue to cause applications to crash, resulting in a denial of service. This issue only affected Ubuntu 10.04 LTS and Ubuntu 12.04 LTS. (CVE-2012-6656) Adhemerval Zanella ...

CVE-2012-6656 CVE-2014-6040 CVE-2014-7817

USN-2428-1: Thunderbird vulnerabilities - 3rd December 2014

Gary Kwong, Randell Jesup, Nils Ohlmeier, Jesse Ruderman, and Max Jonas Werner discovered multiple memory safety issues in Thunderbird. If a user were tricked in to opening a specially crafted message with scripting enabled, an attacker could potentially exploit these to cause a denial of service via application crash, or ...

CVE-2014-1587 CVE-2014-1590 CVE-2014-1592 CVE-2014-1593 CVE-2014-1594

USN-2431-1: mod_wsgi vulnerability - 3rd December 2014

It was discovered that mod_wsgi incorrectly handled errors when setting up the working directory and group access rights. A malicious application could possibly use this issue to cause a local privilege escalation when using daemon mode.

CVE-2014-8583

USN-2424-1: Firefox vulnerabilities - 2nd December 2014

Gary Kwong, Randell Jesup, Nils Ohlmeier, Jesse Ruderman, Max Jonas Werner, Christian Holler, Jon Coppeard, Eric Rahm, Byron Campen, Eric Rescorla, and Xidorn Quan discovered multiple memory safety issues in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to ...

CVE-2014-1587 CVE-2014-1588 CVE-2014-1589 CVE-2014-1590 CVE-2014-1591 CVE-2014-1592 CVE-2014-1593 CVE-2014-1594

USN-2430-1: OpenVPN vulnerability - 2nd December 2014

Dragana Damjanovic discovered that OpenVPN incorrectly handled certain control channel packets. An authenticated attacker could use this issue to cause an OpenVPN server to crash, resulting in a denial of service.

CVE-2014-8104

USN-2429-1: ppp vulnerability - 1st December 2014

It was discovered that ppp incorrectly handled certain options files. A local attacker could possibly use this issue to escalate privileges.

CVE-2014-3158

USN-2427-1: Libksba vulnerability - 27th November 2014

Hanno Böck discovered that Libksba incorrectly handled certain S/MIME messages or ECC based OpenPGP data. An attacker could use this issue to cause Libksba to crash, resulting in a denial of service, or possibly execute arbitrary code.

CVE-2014-9087

USN-2426-1: FLAC vulnerabilities - 27th November 2014

Michele Spagnuolo discovered that FLAC incorrectly handled certain malformed audio files. An attacker could use this issue to cause FLAC to crash, resulting in a denial of service, or possibly execute arbitrary code.

CVE-2014-8962 CVE-2014-9028

USN-2425-1: DBus vulnerability - 27th November 2014

It was discovered that DBus incorrectly handled a large number of file descriptor messages. A local attacker could use this issue to cause DBus to stop responding, resulting in a denial of service. (CVE-2014-7824)

CVE-2014-7824

USN-2423-1: ClamAV vulnerabilities - 26th November 2014

Kurt Seifried discovered that ClamAV incorrectly handled certain JavaScript files. An attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2013-6497) Damien Millescamp discovered that ClamAV incorrectly handled certain PE files. An attacker could possibly use this ...

CVE-2013-6497 CVE-2014-9050

USN-2422-1: Squid vulnerabilities - 25th November 2014

Sebastian Krahmer discovered that the Squid pinger incorrectly handled certain malformed ICMP packets. A remote attacker could possibly use this issue to cause Squid to crash, resulting in a denial of service.

CVE-2014-7141 CVE-2014-7142

USN-2421-1: Linux kernel vulnerabilities - 24th November 2014

A flaw was discovered in how the Linux kernel's KVM (Kernel Virtual Machine) subsystem handles the CR4 control register at VM entry on Intel processors. A local host OS user can exploit this to cause a denial of service (kill arbitrary processes, or system disruption) by leveraging /dev/kvm access. (CVE-2014-3690) ...

CVE-2014-3690 CVE-2014-4608 CVE-2014-7975

USN-2420-1: Linux kernel vulnerabilities - 24th November 2014

A flaw was discovered in how the Linux kernel's KVM (Kernel Virtual Machine) subsystem handles the CR4 control register at VM entry on Intel processors. A local host OS user can exploit this to cause a denial of service (kill arbitrary processes, or system disruption) by leveraging /dev/kvm access. (CVE-2014-3690) ...

CVE-2014-3690 CVE-2014-4608 CVE-2014-7970 CVE-2014-7975

USN-2419-1: Linux kernel (Trusty HWE) vulnerabilities - 24th November 2014

A flaw was discovered in how the Linux kernel's KVM (Kernel Virtual Machine) subsystem handles the CR4 control register at VM entry on Intel processors. A local host OS user can exploit this to cause a denial of service (kill arbitrary processes, or system disruption) by leveraging /dev/kvm access. (CVE-2014-3690) ...

CVE-2014-3690 CVE-2014-4608 CVE-2014-7970 CVE-2014-7975

USN-2418-1: Linux kernel (OMAP4) vulnerabilities - 24th November 2014

Nadav Amit reported that the KVM (Kernel Virtual Machine) mishandles noncanonical addresses when emulating instructions that change the rip (Instruction Pointer). A guest user with access to I/O or the MMIO can use this flaw to cause a denial of service (system crash) of the guest. (CVE-2014-3647) A flaw was ...

CVE-2014-3610 CVE-2014-3611 CVE-2014-3645 CVE-2014-3646 CVE-2014-3647 CVE-2014-3673 CVE-2014-3687 CVE-2014-3688 CVE-2014-3690 CVE-2014-4608 CVE-2014-7207 CVE-2014-7975

USN-2417-1: Linux kernel vulnerabilities - 24th November 2014

Nadav Amit reported that the KVM (Kernel Virtual Machine) mishandles noncanonical addresses when emulating instructions that change the rip (Instruction Pointer). A guest user with access to I/O or the MMIO can use this flaw to cause a denial of service (system crash) of the guest. (CVE-2014-3647) A flaw was ...

CVE-2014-3610 CVE-2014-3611 CVE-2014-3645 CVE-2014-3646 CVE-2014-3647 CVE-2014-3673 CVE-2014-3687 CVE-2014-3688 CVE-2014-3690 CVE-2014-4608 CVE-2014-7207 CVE-2014-7975

USN-2416-1: Linux kernel (EC2) vulnerabilities - 24th November 2014

Don Bailey discovered a flaw in the LZO decompress algorithm used by the Linux kernel. An attacker could exploit this flaw to cause a denial of service (memory corruption or OOPS). (CVE-2014-4608) Andy Lutomirski discovered that the Linux kernel was not checking the CAP_SYS_ADMIN when remounting filesystems to read-only. A ...

CVE-2014-4608 CVE-2014-7975

USN-2415-1: Linux kernel vulnerability - 24th November 2014

Andy Lutomirski discovered that the Linux kernel was not checking the CAP_SYS_ADMIN when remounting filesystems to read-only. A local user could exploit this flaw to cause a denial of service (loss of writability).

CVE-2014-7975

USN-2414-1: KDE-Runtime vulnerability - 24th November 2014

Tim Brown and Darron Burton discovered that KDE-Runtime incorrectly handled input validation. An attacker could possibly use this issue to execute arbitrary javascript.

CVE-2014-8600

USN-2413-1: AppArmor vulnerability - 20th November 2014

An AppArmor policy miscompilation flaw was discovered in apparmor_parser. Under certain circumstances, a malicious application could use this flaw to perform operations that are not allowed by AppArmor policy. The flaw may also prevent applications from accessing resources that are allowed by AppArmor policy.

CVE-2014-1424

USN-2412-1: Ruby vulnerability - 20th November 2014

Tomas Hoger discovered that Ruby incorrectly handled XML entity expansion. An attacker could use this flaw to cause Ruby to consume large amounts of resources, resulting in a denial of service.

CVE-2014-8090

USN-2410-1: Oxide vulnerabilities - 19th November 2014

A buffer overflow was discovered in Skia. If a user were tricked in to opening a specially crafted website, an attacked could potentially exploit this to cause a denial of service via renderer crash or execute arbitrary code with the privileges of the sandboxed render process. (CVE-2014-7904) Multiple use-after-frees were ...

CVE-2014-7904 CVE-2014-7907 CVE-2014-7908 CVE-2014-7909 CVE-2014-7910

USN-2411-1: mountall vulnerability - 18th November 2014

Saurav Sengupta discovered that mountall incorrectly handled umask when calling the mount utility, resulting in certain filesystems possibly being mounted with incorrect permissions.

CVE-2014-1421

USN-2409-1: QEMU vulnerabilities - 13th November 2014

Laszlo Ersek discovered that QEMU incorrectly handled memory in the vga device. A malicious guest could possibly use this issue to read arbitrary host memory. This issue only affected Ubuntu 14.04 LTS and Ubuntu 14.10. (CVE-2014-3615) Xavier Mehrenberger and Stephane Duverger discovered that QEMU incorrectly handled certain udp packets when ...

CVE-2014-3615 CVE-2014-3640 CVE-2014-3689 CVE-2014-5263 CVE-2014-5388 CVE-2014-7815

USN-2408-1: OpenStack Neutron vulnerability - 11th November 2014

Elena Ezhova discovered that OpenStack Neutron did not properly perform access control checks for attributes. A remote authenticated attacker could exploit this to bypass intended access controls and reset admin-only attributes to default values.

CVE-2014-6414

USN-2407-1: OpenStack Nova vulnerabilities - 11th November 2014

Garth Mollett discovered that OpenStack Nova did not properly clean up an instance when using rescue mode with the VMWare driver. A remove authenticated user could exploit this to bypass intended quota limits. By default, Ubuntu does not use the VMWare driver. (CVE-2014-3608) Amrith Kumar discovered that OpenStack Nova did ...

CVE-2014-3608 CVE-2014-7230

USN-2406-1: OpenStack Keystone vulnerability - 11th November 2014

Brant Knudson discovered that OpenStack Keystone did not properly perform input sanitization when performing endpoint catalog substitution. A remote attacker with privileged access for creating endpoints could exploit this to obtain sensitive information.

CVE-2014-3621

USN-2405-1: OpenStack Cinder vulnerabilities - 11th November 2014

Duncan Thomas discovered that OpenStack Cinder did not properly track the file format when using the GlusterFS of Smbfs drivers. A remote authenticated user could exploit this to potentially obtain file contents from the compute host. (CVE-2014-3641) Amrith Kumar discovered that OpenStack Cinder did not properly sanitize log message contents. ...

CVE-2014-3641 CVE-2014-7230

USN-2404-1: libvirt vulnerabilities - 11th November 2014

Pavel Hrdina discovered that libvirt incorrectly handled locking when processing the virConnectListAllDomains command. An attacker could use this issue to cause libvirtd to hang, resulting in a denial of service. (CVE-2014-3657) Eric Blake discovered that libvirt incorrectly handled permissions when processing the qemuDomainFormatXML command. An attacker with read-only privileges could ...

CVE-2014-3657 CVE-2014-7823

USN-2403-1: GnuTLS vulnerability - 11th November 2014

Sean Burford discovered that GnuTLS incorrectly handled printing certain elliptic curve parameters. A malicious remote server or client could use this issue to cause GnuTLS to crash, resulting in a denial of service, or possibly execute arbitrary code.

CVE-2014-8564

USN-2402-1: KDE workspace vulnerability - 10th November 2014

David Edmundson discovered that the KDE Clock KCM policykit helper did not properly guard against untrusted input. Under certain circumstances, a process running under the user's session could exploit this to run programs as the administrator.

CVE-2014-8651

Showing page 1 of 55   Next >
Show: All