These are the Ubuntu security notices that affect the current supported releases of Ubuntu. These notices are also posted to the ubuntu-security-announce mailing list (list archive). To report a security vulnerability in an Ubuntu package, please file a bug, or contact security@ubuntu.com. You may also be interested in learning about Ubuntu security policies. For more details on a specific CVE or source package, please see the Ubuntu CVE Tracker.
You can also view the latest notices by subscribing to the RSS 
or the Atom feeds.
USN-1349-1: X.Org vulnerability - 26th January 2012
It was discovered that the X wrapper incorrectly checked certain console permissions when launched by unprivileged users. An attacker connected remotely could use this flaw to start X, bypassing the console permissions check.
USN-1348-1: ICU vulnerability - 26th January 2012
It was discovered that ICU did not properly handle invalid locale data during Unicode conversion. If an application using ICU processed crafted data, an attacker could cause it to crash or potentially execute arbitrary code with the privileges of the user invoking the program.
USN-1342-1: Linux kernel (Oneiric backport) vulnerability - 25th January 2012
Jüri Aedla discovered that the kernel incorrectly handled /proc/<pid>/mem permissions. A local attacker could exploit this and gain root privileges.
USN-1347-1: Evince vulnerability - 25th January 2012
It was discovered that Evince did not properly parse AFM font files when processing DVI files. If a user were tricked into opening a specially crafted DVI file, an attacker could cause Evince to crash or potentially execute arbitrary code with the privileges of the user invoking the program. In ...
USN-1263-2: OpenJDK 6 regression - 24th January 2012
USN-1263-1 fixed vulnerabilities in OpenJDK 6. The upstream patch for the chosen plaintext attack on the block-wise AES encryption algorithm (CVE-2011-3389) introduced a regression that caused TLS/SSL connections to fail when using certain algorithms. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Deepak Bhole discovered ...
USN-1346-1: curl vulnerability - 24th January 2012
Dan Fandrich discovered that curl incorrectly handled URLs containing embedded or percent-encoded control characters. If a user or automated system were tricked into processing a specially crafted URL, arbitrary data could be injected.
USN-1345-1: Linux kernel vulnerabilities - 24th January 2012
Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. (CVE-2011-1162) Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) A ...
CVE-2011-1162 CVE-2011-2203 CVE-2011-4110
USN-1344-1: Linux kernel vulnerabilities - 24th January 2012
Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) A flaw was found in how the Linux kernel handles user-defined key types. An unprivileged local user could exploit this to crash the system. (CVE-2011-4110)
USN-1343-1: Thunderbird vulnerabilities - 24th January 2012
Alexandre Poirot, Chris Blizzard, Kyle Huey, Scoobidiver, Christian Holler, David Baron, Gary Kwong, Jim Blandy, Bob Clary, Jesse Ruderman, Marcia Knous, and Rober Longson discovered several memory safety issues which could possibly be exploited to crash Thunderbird or execute arbitrary code as the user that invoked Thunderbird. (CVE-2011-3660) Aki Helin ...
CVE-2011-3658 CVE-2011-3660 CVE-2011-3661 CVE-2011-3663 CVE-2011-3665 LP: 909599
USN-1341-1: Linux kernel vulnerabilities - 23rd January 2012
Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. (CVE-2011-1162) Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) A ...
CVE-2011-1162 CVE-2011-2203 CVE-2011-4110
USN-1340-1: Linux kernel (Oneiric backport) vulnerabilities - 23rd January 2012
Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) A bug was discovered in the XFS filesystem's handling of pathnames. A local attacker could exploit this to crash the system, leading to a denial of service, or gain ...
CVE-2011-2203 CVE-2011-4077 CVE-2011-4110 CVE-2011-4132 CVE-2011-4330 CVE-2012-0044
USN-1338-1: Rsyslog vulnerability - 23rd January 2012
Peter Eisentraut discovered that Rsyslog would not properly perform input validation when configured to use imfile. If an attacker were able to craft messages in a file that Rsyslog monitored, an attacker could cause a denial of service. The imfile module is disabled by default in Ubuntu.
USN-1339-1: QEMU vulnerability - 23rd January 2012
Nicolae Mogoreanu discovered that QEMU did not properly verify legacy mode packets in the e1000 network driver. A remote attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the user invoking the program. When using QEMU with libvirt or virtualization management ...
USN-1337-1: Linux kernel (Natty backport) vulnerabilities - 23rd January 2012
Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. (CVE-2011-1162) Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) A ...
CVE-2011-1162 CVE-2011-2203 CVE-2011-4110
USN-1336-1: Linux kernel vulnerability - 23rd January 2012
Jüri Aedla discovered that the kernel incorrectly handled /proc/<pid>/mem permissions. A local attacker could exploit this and gain root privileges.
USN-1334-1: libxml2 vulnerabilities - 19th January 2012
It was discovered that libxml2 contained an off by one error. If a user or application linked against libxml2 were tricked into opening a specially crafted XML file, an attacker could cause the application to crash or possibly execute arbitrary code with the privileges of the user invoking the program. ...
CVE-2011-0216 CVE-2011-2821 CVE-2011-2834 CVE-2011-3905 CVE-2011-3919
USN-1335-1: t1lib vulnerabilities - 19th January 2012
Jon Larimer discovered that t1lib did not properly parse AFM fonts. If a user were tricked into using a specially crafted font file, a remote attacker could cause t1lib to crash or possibly execute arbitrary code with user privileges. (CVE-2010-2642, CVE-2011-0433) Jonathan Brossard discovered that t1lib did not correctly handle ...
CVE-2010-2642 CVE-2011-0433 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554
USN-1333-1: Libav vulnerabilities - 17th January 2012
Steve Manzuik discovered that Libav incorrectly handled certain malformed Matroska files. If a user were tricked into opening a crafted Matroska file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program. This issue only ...
CVE-2011-3504 CVE-2011-4351 CVE-2011-4352 CVE-2011-4353 CVE-2011-4364 CVE-2011-4579
USN-1332-1: Linux kernel (Maverick backport) vulnerabilities - 12th January 2012
Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. (CVE-2011-1162) Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) A ...
CVE-2011-1162 CVE-2011-2203 CVE-2011-4110
USN-1330-1: Linux kernel (OMAP4) vulnerabilities - 12th January 2012
Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) A bug was discovered in the XFS filesystem's handling of pathnames. A local attacker could exploit this to crash the system, leading to a denial of service, or gain ...
CVE-2011-2203 CVE-2011-4077 CVE-2011-4110 CVE-2011-4132 CVE-2011-4330
USN-1329-1: Linux kernel (OMAP4) vulnerability - 12th January 2012
Han-Wen Nienhuys reported a flaw in the FUSE kernel module. A local user who can mount a FUSE file system could cause a denial of service.
USN-1328-1: Linux kernel (Marvell DOVE) vulnerabilities - 12th January 2012
Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) A flaw was found in how the Linux kernel handles user-defined key types. An unprivileged local user could exploit this to crash the system. (CVE-2011-4110)
USN-1326-1: Nova vulnerability - 11th January 2012
Nachi Ueno, Rohit Karajgi, and Venkatesan Ravikumar discovered that when Nova is configured to use the OpenStack API, it would not correctly enforce access controls on certain incoming requests. A remote authenticated attacker could exploit this to change resources of arbitrary tenants.
USN-1324-1: Linux kernel (EC2) vulnerabilities - 11th January 2012
Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) A flaw was found in how the Linux kernel handles user-defined key types. An unprivileged local user could exploit this to crash the system. (CVE-2011-4110)
USN-1325-1: Linux kernel (OMAP4) vulnerabilities - 11th January 2012
Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. (CVE-2011-1162) Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) Han-Wen ...
CVE-2011-1162 CVE-2011-2203 CVE-2011-3353 CVE-2011-3359 CVE-2011-4110
USN-1323-1: Linux kernel vulnerabilities - 11th January 2012
Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. (CVE-2011-1162) Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) A ...
CVE-2011-1162 CVE-2011-2203 CVE-2011-3359 CVE-2011-4110
USN-1322-1: Linux kernel vulnerability - 9th January 2012
Nick Bowler discovered the kernel GHASH message digest algorithm incorrectly handled error conditions. A local attacker could exploit this to cause a kernel oops.
USN-1319-1: Linux kernel (OMAP4) vulnerabilities - 9th January 2012
Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. (CVE-2011-1162) Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) A ...
CVE-2011-1162 CVE-2011-2203 CVE-2011-4110
USN-1306-2: Mozvoikko and ubufox update - 6th January 2012
USN-1306-1 fixed vulnerabilities in Firefox. This update provides updated Mozvoikko and ubufox packages for use with Firefox 9. Original advisory details: Alexandre Poirot, Chris Blizzard, Kyle Huey, Scoobidiver, Christian Holler, David Baron, Gary Kwong, Jim Blandy, Bob Clary, Jesse Ruderman, Marcia Knous, and Rober Longson discovered several memory safety issues ...
USN-1306-1: Firefox vulnerabilities - 6th January 2012
Alexandre Poirot, Chris Blizzard, Kyle Huey, Scoobidiver, Christian Holler, David Baron, Gary Kwong, Jim Blandy, Bob Clary, Jesse Ruderman, Marcia Knous, and Rober Longson discovered several memory safety issues which could possibly be exploited to crash Firefox or execute arbitrary code as the user that invoked Firefox. (CVE-2011-3660) Aki Helin ...
CVE-2011-3658 CVE-2011-3660 CVE-2011-3661 CVE-2011-3663 CVE-2011-3665 LP: 906389
USN-1320-1: FFmpeg vulnerabilities - 5th January 2012
Steve Manzuik discovered that FFmpeg incorrectly handled certain malformed Matroska files. If a user were tricked into opening a crafted Matroska file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program. (CVE-2011-3504) Phillip Langlois ...
CVE-2011-3504 CVE-2011-4351 CVE-2011-4352 CVE-2011-4353 CVE-2011-4364 CVE-2011-4579
USN-1318-1: Linux kernel (FSL-IMX51) vulnerabilities - 5th January 2012
Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. (CVE-2011-1162) Clement Lecigne discovered a bug in the HFS filesystem. A local attacker could exploit this to cause a kernel oops. (CVE-2011-2203) A ...
CVE-2011-1162 CVE-2011-2203 CVE-2011-4110
USN-1317-1: Ghostscript vulnerabilities - 4th January 2012
It was discovered that Ghostscript did not correctly handle memory allocation when parsing certain malformed JPEG-2000 images. If a user or automated system were tricked into opening a specially crafted image, an attacker could cause a denial of service and possibly execute arbitrary code with user privileges. (CVE-2008-3520) It was ...
CVE-2008-3520 CVE-2008-3522 CVE-2009-3743 CVE-2010-4054 CVE-2011-4516 CVE-2011-4517
USN-1254-1: Thunderbird vulnerabilities - 22nd December 2011
It was discovered that CVE-2011-3004, which addressed possible privilege escalation in addons, also affected Thunderbird 3.1. An attacker could potentially exploit a user who had installed an add-on that used loadSubscript in vulnerable ways. (CVE-2011-3647) Yosuke Hasegawa discovered that the Mozilla browser engine mishandled invalid sequences in the Shift-JIS encoding. ...
CVE-2011-3647 CVE-2011-3648 CVE-2011-3650
USN-1316-1: t1lib vulnerability - 21st December 2011
Jonathan Brossard discovered that t1lib did not correctly handle certain malformed font files. If a user were tricked into using a specially crafted font file, a remote attacker could cause t1lib to crash or possibly execute arbitrary code with user privileges.
USN-1315-1: JasPer vulnerabilities - 20th December 2011
Jonathan Foote discovered that JasPer incorrectly handled certain malformed JPEG-2000 image files. If a user were tricked into opening a specially crafted JPEG-2000 image file, a remote attacker could cause JasPer to crash or possibly execute arbitrary code with user privileges.
USN-1314-1: Python 3 vulnerabilities - 19th December 2011
Giampaolo Rodola discovered that the smtpd module in Python 3 did not properly handle certain error conditions. A remote attacker could exploit this to cause a denial of service via daemon outage. This issue only affected Ubuntu 10.04 LTS. (CVE-2010-3493) Niels Heinen discovered that the urllib module in Python 3 ...
USN-1313-1: Linux Kernel (Oneiric backport) vulnerability - 19th December 2011
Nick Bowler discovered the kernel GHASH message digest algorithm incorrectly handled error conditions. A local attacker could exploit this to cause a kernel oops.
USN-1312-1: Linux kernel vulnerabilities - 19th December 2011
A bug was discovered in the XFS filesystem's handling of pathnames. A local attacker could exploit this to crash the system, leading to a denial of service, or gain root privileges. (CVE-2011-4077) Nick Bowler discovered the kernel GHASH message digest algorithm incorrectly handled error conditions. A local attacker could exploit ...
CVE-2011-4077 CVE-2011-4081 CVE-2011-4132 CVE-2011-4330
USN-1311-1: Linux kernel vulnerabilities - 19th December 2011
Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. (CVE-2011-1162) A bug was discovered in the XFS filesystem's handling of pathnames. A local attacker could exploit this to crash the system, leading ...
CVE-2011-1162 CVE-2011-4077 CVE-2011-4081 CVE-2011-4132 CVE-2011-4326 CVE-2011-4330
USN-1310-1: libarchive vulnerabilities - 19th December 2011
It was discovered that libarchive incorrectly handled certain ISO 9660 image files. If a user were tricked into using a specially crafted ISO 9660 image file, a remote attacker could cause libarchive to crash or possibly execute arbitrary code with user privileges. (CVE-2011-1777) It was discovered that libarchive incorrectly handled ...
USN-1309-1: DHCP vulnerability - 15th December 2011
It was discovered that the DHCP server incorrectly handled certain malformed packets when configured to evaluate regular expressions. A remote attacker could use this issue to cause DHCP to crash, resulting in a denial of service.
USN-1308-1: bzip2 vulnerability - 14th December 2011
vladz discovered that executables compressed by bzexe insecurely create temporary files when they are ran. A local attacker could exploit this issue to execute arbitrary code as the user running a compressed executable.
USN-1307-1: PHP vulnerability - 14th December 2011
Florent Hochwelker discovered that PHP incorrectly handled certain EXIF headers in JPEG files. A remote attacker could exploit this issue to view sensitive information or cause the PHP server to crash.
USN-1305-1: Nova vulnerability - 13th December 2011
David Black discovered that Nova did not properly perform input validation during image registration. An attacker could exploit this by registering a crafted image using the EC2 API or S3/RegisterImage method and overwrite files as the nova user.
USN-1304-1: Linux kernel (OMAP4) vulnerabilities - 13th December 2011
A bug was discovered in the XFS filesystem's handling of pathnames. A local attacker could exploit this to crash the system, leading to a denial of service, or gain root privileges. (CVE-2011-4077) Nick Bowler discovered the kernel GHASH message digest algorithm incorrectly handled error conditions. A local attacker could exploit ...
CVE-2011-4077 CVE-2011-4081 CVE-2011-4087 CVE-2011-4132 CVE-2011-4326 CVE-2011-4330
USN-1303-1: Linux kernel (Marvell DOVE) vulnerabilities - 13th December 2011
Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. (CVE-2011-1162) A bug was discovered in the XFS filesystem's handling of pathnames. A local attacker could exploit this to crash the system, leading ...
CVE-2011-1162 CVE-2011-4077 CVE-2011-4081 CVE-2011-4132 CVE-2011-4326 CVE-2011-4330
USN-1302-1: Linux kernel (OMAP4) vulnerabilities - 13th December 2011
A bug was discovered in the XFS filesystem's handling of pathnames. A local attacker could exploit this to crash the system, leading to a denial of service, or gain root privileges. (CVE-2011-4077) Nick Bowler discovered the kernel GHASH message digest algorithm incorrectly handled error conditions. A local attacker could exploit ...
CVE-2011-4077 CVE-2011-4081 CVE-2011-4132 CVE-2011-4326 CVE-2011-4330
USN-1301-1: Linux kernel (Natty backport) vulnerabilities - 13th December 2011
A bug was discovered in the XFS filesystem's handling of pathnames. A local attacker could exploit this to crash the system, leading to a denial of service, or gain root privileges. (CVE-2011-4077) Nick Bowler discovered the kernel GHASH message digest algorithm incorrectly handled error conditions. A local attacker could exploit ...
CVE-2011-4077 CVE-2011-4081 CVE-2011-4132 CVE-2011-4330
USN-1300-1: Linux kernel (FSL-IMX51) vulnerabilities - 13th December 2011
A bug was discovered in the XFS filesystem's handling of pathnames. A local attacker could exploit this to crash the system, leading to a denial of service, or gain root privileges. (CVE-2011-4077) A flaw was found in the Journaling Block Device (JBD). A local attacker able to mount ext3 or ...
CVE-2011-4077 CVE-2011-4132 CVE-2011-4330