Ubuntu security notices

These are the Ubuntu security notices that affect the current supported releases of Ubuntu. These notices are also posted to the ubuntu-security-announce mailing list (list archive). To report a security vulnerability in an Ubuntu package, please file a bug, or contact security@ubuntu.com. You may also be interested in learning about Ubuntu security policies. For more details on a specific CVE or source package, please see the Ubuntu CVE Tracker.

You can also view the latest notices by subscribing to the RSS or the Atom feeds.

Show: All  

USN-2301-1: Jinja2 vulnerabilities - 24th July 2014

It was discovered that Jinja2 incorrectly handled temporary cache files and directories. A local attacker could use this issue to possibly gain privileges.

CVE-2014-0012 CVE-2014-1402

USN-2300-1: LZO vulnerability - 24th July 2014

Don A. Bailey discovered that LZO incorrectly handled certain input data. An attacker could use this issue to cause LZO to crash, resulting in a denial of service, or possibly execute arbitrary code.

CVE-2014-4607

USN-2298-1: Oxide vulnerabilities - 23rd July 2014

A type confusion bug was discovered in V8. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via renderer crash, or execute arbitrary code with the privileges of the sandboxed render process. (CVE-2014-1730) A type ...

CVE-2014-1730 CVE-2014-1731 CVE-2014-1735 CVE-2014-1740 CVE-2014-1741 CVE-2014-1742 CVE-2014-1743 CVE-2014-1744 CVE-2014-1746 CVE-2014-1748 CVE-2014-3152 CVE-2014-3154 CVE-2014-3155 CVE-2014-3157 CVE-2014-3160 CVE-2014-3162 CVE-2014-3803 LP: 1337301

USN-2299-1: Apache HTTP Server vulnerabilities - 23rd July 2014

Marek Kroemeke discovered that the mod_proxy module incorrectly handled certain requests. A remote attacker could use this issue to cause the server to stop responding, leading to a denial of service. This issue only affected Ubuntu 14.04 LTS. (CVE-2014-0117) Giancarlo Pellegrino and Davide Balzarotti discovered that the mod_deflate module incorrectly ...

CVE-2014-0117 CVE-2014-0118 CVE-2014-0226 CVE-2014-0231

USN-2296-1: Thunderbird vulnerabilities - 22nd July 2014

Christian Holler, David Keeler and Byron Campen discovered multiple memory safety issues in Thunderbird. If a user were tricked in to opening a specially crafted message with scripting enabled, an attacker could potentially exploit these to cause a denial of service via application crash, or execute arbitrary code with the ...

CVE-2014-1544 CVE-2014-1547 CVE-2014-1549 CVE-2014-1550 CVE-2014-1552 CVE-2014-1555 CVE-2014-1556 CVE-2014-1557 CVE-2014-1558 CVE-2014-1559 CVE-2014-1560 LP: 1346007

USN-2295-1: Firefox vulnerabilities - 22nd July 2014

Christian Holler, David Keeler, Byron Campen, Gary Kwong, Jesse Ruderman, Andrew McCreight, Alon Zakai, Bobby Holley, Jonathan Watt, Shu-yu Guo, Steve Fink, Terrence Cole, Gijs Kruitbosch and Cătălin Badea discovered multiple memory safety issues in Firefox. If a user were tricked in to opening a specially crafted website, an attacker ...

CVE-2014-1544 CVE-2014-1547 CVE-2014-1548 CVE-2014-1549 CVE-2014-1550 CVE-2014-1552 CVE-2014-1555 CVE-2014-1556 CVE-2014-1557 CVE-2014-1558 CVE-2014-1559 CVE-2014-1560 CVE-2014-1561 LP: 1342311

USN-2297-1: acpi-support vulnerability - 22nd July 2014

CESG discovered that acpi-support incorrectly handled certain privileged operations when checking for power management daemons. A local attacker could use this flaw to execute arbitrary code and elevate privileges to root.

CVE-2014-1419

USN-2294-1: Libtasn1 vulnerabilities - 22nd July 2014

It was discovered that Libtasn1 incorrectly handled certain ASN.1 data structures. An attacker could exploit this with specially crafted ASN.1 data and cause applications using Libtasn1 to crash, resulting in a denial of service. (CVE-2014-3467) It was discovered that Libtasn1 incorrectly handled negative bit lengths. An attacker could exploit this ...

CVE-2014-3467 CVE-2014-3468 CVE-2014-3469

USN-2293-1: CUPS vulnerability - 21st July 2014

Francisco Alonso discovered that the CUPS web interface incorrectly validated permissions on rss files. A local attacker could possibly use this issue to bypass file permissions and read arbitrary files, possibly leading to a privilege escalation.

CVE-2014-3537

USN-2292-1: LWP::Protocol::https vulnerability - 17th July 2014

It was discovered that the LWP::Protocol::https perl module incorrectly disabled peer certificate verification completely when only hostname verification was requested to be disabled. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could possibly be exploited in certain scenarios to alter or compromise confidential information in ...

CVE-2014-3230

USN-2291-1: MySQL vulnerabilities - 17th July 2014

Multiple security issues were discovered in MySQL and this update includes a new upstream MySQL version to fix these issues. MySQL has been updated to 5.5.38. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes. Please see the following for more information: ...

CVE-2014-2494 CVE-2014-4207 CVE-2014-4258 CVE-2014-4260

USN-2290-1: Linux kernel vulnerabilities - 16th July 2014

Sasha Levin reported a flaw in the Linux kernel's point-to-point protocol (PPP) when used with the Layer Two Tunneling Protocol (L2TP). A local user could exploit this flaw to gain administrative privileges. (CVE-2014-4943) Salva Peiró discovered an information leak in the Linux kernel's media- device driver. A local attacker could ...

CVE-2014-1739 CVE-2014-3144 CVE-2014-3145 CVE-2014-3940 CVE-2014-4608 CVE-2014-4611 CVE-2014-4943

USN-2289-1: Linux kernel vulnerabilities - 16th July 2014

Sasha Levin reported a flaw in the Linux kernel's point-to-point protocol (PPP) when used with the Layer Two Tunneling Protocol (L2TP). A local user could exploit this flaw to gain administrative privileges. (CVE-2014-4943) Michael S. Tsirkin discovered an information leak in the Linux kernel's segmentation of skbs when using the ...

CVE-2014-0131 CVE-2014-3917 CVE-2014-4014 CVE-2014-4608 CVE-2014-4611 CVE-2014-4943

USN-2288-1: Linux kernel (Trusty HWE) vulnerabilities - 16th July 2014

Sasha Levin reported a flaw in the Linux kernel's point-to-point protocol (PPP) when used with the Layer Two Tunneling Protocol (L2TP). A local user could exploit this flaw to gain administrative privileges. (CVE-2014-4943) Salva Peiró discovered an information leak in the Linux kernel's media- device driver. A local attacker could ...

CVE-2014-1739 CVE-2014-3144 CVE-2014-3145 CVE-2014-3940 CVE-2014-4608 CVE-2014-4611 CVE-2014-4943

USN-2287-1: Linux kernel (Saucy HWE) vulnerabilities - 16th July 2014

Sasha Levin reported a flaw in the Linux kernel's point-to-point protocol (PPP) when used with the Layer Two Tunneling Protocol (L2TP). A local user could exploit this flaw to gain administrative privileges. (CVE-2014-4943) Michael S. Tsirkin discovered an information leak in the Linux kernel's segmentation of skbs when using the ...

CVE-2014-0131 CVE-2014-3917 CVE-2014-4014 CVE-2014-4608 CVE-2014-4611 CVE-2014-4943

USN-2286-1: Linux kernel (Raring HWE) vulnerabilities - 16th July 2014

Sasha Levin reported a flaw in the Linux kernel's point-to-point protocol (PPP) when used with the Layer Two Tunneling Protocol (L2TP). A local user could exploit this flaw to gain administrative privileges. (CVE-2014-4943) Michael S. Tsirkin discovered an information leak in the Linux kernel's segmentation of skbs when using the ...

CVE-2014-0131 CVE-2014-1739 CVE-2014-3144 CVE-2014-3145 CVE-2014-3917 CVE-2014-4014 CVE-2014-4608 CVE-2014-4943

USN-2285-1: Linux kernel (Quantal HWE) vulnerabilities - 16th July 2014

Sasha Levin reported a flaw in the Linux kernel's point-to-point protocol (PPP) when used with the Layer Two Tunneling Protocol (L2TP). A local user could exploit this flaw to gain administrative privileges. (CVE-2014-4943) Michael S. Tsirkin discovered an information leak in the Linux kernel's segmentation of skbs when using the ...

CVE-2014-0131 CVE-2014-1739 CVE-2014-3917 CVE-2014-4014 CVE-2014-4027 CVE-2014-4608 CVE-2014-4943

USN-2284-1: Linux kernel (OMAP4) vulnerabilities - 16th July 2014

Sasha Levin reported a flaw in the Linux kernel's point-to-point protocol (PPP) when used with the Layer Two Tunneling Protocol (L2TP). A local user could exploit this flaw to gain administrative privileges. (CVE-2014-4943) Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could ...

CVE-2014-0131 CVE-2014-4608 CVE-2014-4699 CVE-2014-4943

USN-2283-1: Linux kernel vulnerabilities - 16th July 2014

Sasha Levin reported a flaw in the Linux kernel's point-to-point protocol (PPP) when used with the Layer Two Tunneling Protocol (L2TP). A local user could exploit this flaw to gain administrative privileges. (CVE-2014-4943) Michael S. Tsirkin discovered an information leak in the Linux kernel's segmentation of skbs when using the ...

CVE-2014-0131 CVE-2014-4608 CVE-2014-4943

USN-2282-1: Linux kernel vulnerabilities - 16th July 2014

Sasha Levin reported a flaw in the Linux kernel's point-to-point protocol (PPP) when used with the Layer Two Tunneling Protocol (L2TP). A local user could exploit this flaw to gain administrative privileges. (CVE-2014-4943) An flaw was discovered in the Linux kernel's audit subsystem when auditing certain syscalls. A local attacker ...

CVE-2014-3917 CVE-2014-4608 CVE-2014-4943

USN-2281-1: Linux kernel (EC2) vulnerabilities - 16th July 2014

Sasha Levin reported a flaw in the Linux kernel's point-to-point protocol (PPP) when used with the Layer Two Tunneling Protocol (L2TP). A local user could exploit this flaw to gain administrative privileges. (CVE-2014-4943) An flaw was discovered in the Linux kernel's audit subsystem when auditing certain syscalls. A local attacker ...

CVE-2014-3917 CVE-2014-4608 CVE-2014-4943

USN-2280-1: MiniUPnPc vulnerability - 16th July 2014

It was discovered that MiniUPnPc incorrectly handled certain buffer lengths. A remote attacker could possibly use this issue to cause applications using MiniUPnPc to crash, resulting in a denial of service.

CVE-2014-3985

USN-2279-1: Transmission vulnerability - 16th July 2014

Ben Hawkes discovered that Transmission incorrectly handled certain peer messages. A remote attacker could use this issue to cause a denial of service, or possibly execute arbitrary code.

CVE-2014-4909

USN-2278-1: file vulnerabilities - 15th July 2014

Mike Frysinger discovered that the file awk script detector used multiple wildcard with unlimited repetitions. An attacker could use this issue to cause file to consume resources, resulting in a denial of service. (CVE-2013-7345) Francisco Alonso discovered that file incorrectly handled certain CDF documents. A attacker could use this issue ...

CVE-2013-7345 CVE-2014-0207 CVE-2014-3478 CVE-2014-3479 CVE-2014-3480 CVE-2014-3487 CVE-2014-3538

USN-2277-1: Libav vulnerabilities - 15th July 2014

It was discovered that Libav incorrectly handled certain malformed media files. If a user were tricked into opening a crafted media file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program.

LP: 1341216

USN-2276-1: PHP vulnerabilities - 9th July 2014

Francisco Alonso discovered that the PHP Fileinfo component incorrectly handled certain CDF documents. A remote attacker could use this issue to cause PHP to hang or crash, resulting in a denial of service. (CVE-2014-0207, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487) Stefan Esser discovered that PHP incorrectly handled unserializing SPL extension objects. An ...

CVE-2014-0207 CVE-2014-3478 CVE-2014-3479 CVE-2014-3480 CVE-2014-3487 CVE-2014-3515 CVE-2014-4670 CVE-2014-4698 CVE-2014-4721

USN-2275-1: DBus vulnerabilities - 8th July 2014

Alban Crequy discovered that dbus-daemon incorrectly sent AccessDenied errors to the service instead of the client when enforcing permissions. A local user can use this issue to possibly deny access to the service. (CVE-2014-3477) Alban Crequy discovered that dbus-daemon incorrectly handled certain file descriptors. A local attacker could use this ...

CVE-2014-3477 CVE-2014-3532 CVE-2014-3533

USN-2274-1: Linux kernel vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2273-1: Linux kernel vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2272-1: Linux kernel (Trusty HWE) vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2271-1: Linux kernel (Saucy HWE) vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2270-1: Linux kernel (Raring HWE) vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2269-1: Linux kernel (Quantal HWE) vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2268-1: Linux kernel vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2267-1: Linux kernel (EC2) vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2266-1: Linux kernel vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2265-1: NSPR vulnerability - 2nd July 2014

Abhishek Arya discovered that NSPR incorrectly handled certain console functions. A remote attacker could use this issue to cause NSPR to crash, resulting in a denial of service, or possibly execute arbitrary code. The default compiler options for affected releases should reduce the vulnerability to a denial of service.

CVE-2014-1545

USN-2264-1: Linux kernel vulnerabilities - 27th June 2014

Salva Peiró discovered an information leak in the Linux kernel's media- device driver. A local attacker could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2014-1739) A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw ...

CVE-2014-1739 CVE-2014-3144 CVE-2014-3145

USN-2263-1: Linux kernel (OMAP4) vulnerabilities - 27th June 2014

Salva Peiró discovered an information leak in the Linux kernel's media- device driver. A local attacker could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2014-1739) A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw ...

CVE-2014-1739 CVE-2014-3144 CVE-2014-3145

USN-2262-1: Linux kernel (Quantal HWE) vulnerabilities - 27th June 2014

A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. (CVE-2014-3144) A remainder calculation error was discovered in the socket filter subsystem of the Linux kernel. ...

CVE-2014-3144 CVE-2014-3145

USN-2261-1: Linux kernel (Saucy HWE) vulnerabilities - 27th June 2014

Salva Peiró discovered an information leak in the Linux kernel's media- device driver. A local attacker could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2014-1739) A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw ...

CVE-2014-1739 CVE-2014-3144 CVE-2014-3145

USN-2260-1: Linux kernel (Trusty HWE) vulnerabilities - 27th June 2014

A flaw was discovered in the Linux kernel's pseudo tty (pty) device. An unprivileged user could exploit this flaw to cause a denial of service (system crash) or potentially gain administrator privileges. (CVE-2014-0196) Pinkie Pie discovered a flaw in the Linux kernel's futex subsystem. An unprivileged local user could exploit ...

CVE-2014-0077 CVE-2014-0196 CVE-2014-1737 CVE-2014-1738 CVE-2014-2568 CVE-2014-2851 CVE-2014-3122 CVE-2014-3153

USN-2259-1: Linux kernel vulnerabilities - 27th June 2014

Salva Peiró discovered an information leak in the Linux kernel's media- device driver. A local attacker could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2014-1739) A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw ...

CVE-2014-1739 CVE-2014-3144 CVE-2014-3145

USN-2258-1: GnuPG vulnerability - 26th June 2014

Jean-René Reinhard, Olivier Levillain and Florian Maury discovered that GnuPG incorrectly handled certain OpenPGP messages. If a user or automated system were tricked into processing a specially-crafted message, GnuPG could consume resources, resulting in a denial of service.

CVE-2014-4617

USN-2257-1: Samba vulnerabilities - 26th June 2014

Christof Schmitt discovered that Samba incorrectly initialized a certain response field when vfs shadow copy was enabled. A remote authenticated attacker could use this issue to possibly obtain sensitive information. This issue only affected Ubuntu 13.10 and Ubuntu 14.04 LTS. (CVE-2014-0178) It was discovered that the Samba internal DNS server ...

CVE-2014-0178 CVE-2014-0239 CVE-2014-0244 CVE-2014-3493

USN-2256-1: Swift vulnerability - 25th June 2014

John Dickinson discovered that Swift did not properly quote the WWW-Authenticate header value. If a user were tricked into navigating to a malicious Swift URL, an attacker could conduct cross-site scripting attacks. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, ...

CVE-2014-3497

USN-2255-1: OpenStack Neutron vulnerabilities - 25th June 2014

Darragh O'Reilly discovered that the Ubuntu packaging for OpenStack Neutron did not properly set up its sudo configuration. If a different flaw was found in OpenStack Neutron, this vulnerability could be used to escalate privileges. (CVE-2013-6433) Stephen Ma and Christoph Thiel discovered that the openvswitch-agent in OpenStack Neutron did not ...

CVE-2013-6433 CVE-2014-0187 CVE-2014-4167

USN-2254-2: PHP updates - 25th June 2014

USN-2254-1 fixed vulnerabilities in PHP. The fix for CVE-2014-0185 further restricted the permissions on the PHP FastCGI Process Manager (FPM) UNIX socket. This update grants socket access to the www-data user and group so installations and documentation relying on the previous socket permissions will continue to function. Original advisory details: ...

LP: 1334337

USN-2254-1: PHP vulnerabilities - 23rd June 2014

Christian Hoffmann discovered that the PHP FastCGI Process Manager (FPM) set incorrect permissions on the UNIX socket. A local attacker could use this issue to possibly elevate their privileges. This issue only affected Ubuntu 12.04 LTS, Ubuntu 13.10, and Ubuntu 14.04 LTS. (CVE-2014-0185) Francisco Alonso discovered that the PHP Fileinfo ...

CVE-2014-0185 CVE-2014-0237 CVE-2014-0238 CVE-2014-4049

USN-2232-3: OpenSSL regression - 23rd June 2014

USN-2232-1 fixed vulnerabilities in OpenSSL. The upstream fix for CVE-2014-0224 caused a regression for certain applications that use renegotiation, such as PostgreSQL. This update fixes the problem. Original advisory details: Jüri Aedla discovered that OpenSSL incorrectly handled invalid DTLS fragments. A remote attacker could use this issue to cause OpenSSL ...

LP: 1332643

Show: All