Ubuntu security notices

These are the Ubuntu security notices that affect the current supported releases of Ubuntu. These notices are also posted to the ubuntu-security-announce mailing list (list archive). To report a security vulnerability in an Ubuntu package, please file a bug, or contact security@ubuntu.com. You may also be interested in learning about Ubuntu security policies. For more details on a specific CVE or source package, please see the Ubuntu CVE Tracker.

You can also view the latest notices by subscribing to the RSS or the Atom feeds.

Show: All  

USN-2278-1: file vulnerabilities - 15th July 2014

Mike Frysinger discovered that the file awk script detector used multiple wildcard with unlimited repetitions. An attacker could use this issue to cause file to consume resources, resulting in a denial of service. (CVE-2013-7345) Francisco Alonso discovered that file incorrectly handled certain CDF documents. A attacker could use this issue ...

CVE-2013-7345 CVE-2014-0207 CVE-2014-3478 CVE-2014-3479 CVE-2014-3480 CVE-2014-3487 CVE-2014-3538

USN-2277-1: Libav vulnerabilities - 15th July 2014

It was discovered that Libav incorrectly handled certain malformed media files. If a user were tricked into opening a crafted media file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program.

LP: 1341216

USN-2276-1: PHP vulnerabilities - 9th July 2014

Francisco Alonso discovered that the PHP Fileinfo component incorrectly handled certain CDF documents. A remote attacker could use this issue to cause PHP to hang or crash, resulting in a denial of service. (CVE-2014-0207, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487) Stefan Esser discovered that PHP incorrectly handled unserializing SPL extension objects. An ...

CVE-2014-0207 CVE-2014-3478 CVE-2014-3479 CVE-2014-3480 CVE-2014-3487 CVE-2014-3515 CVE-2014-4670 CVE-2014-4698 CVE-2014-4721

USN-2275-1: DBus vulnerabilities - 8th July 2014

Alban Crequy discovered that dbus-daemon incorrectly sent AccessDenied errors to the service instead of the client when enforcing permissions. A local user can use this issue to possibly deny access to the service. (CVE-2014-3477) Alban Crequy discovered that dbus-daemon incorrectly handled certain file descriptors. A local attacker could use this ...

CVE-2014-3477 CVE-2014-3532 CVE-2014-3533

USN-2274-1: Linux kernel vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2273-1: Linux kernel vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2272-1: Linux kernel (Trusty HWE) vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2271-1: Linux kernel (Saucy HWE) vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2270-1: Linux kernel (Raring HWE) vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2269-1: Linux kernel (Quantal HWE) vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2268-1: Linux kernel vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2267-1: Linux kernel (EC2) vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2266-1: Linux kernel vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2265-1: NSPR vulnerability - 2nd July 2014

Abhishek Arya discovered that NSPR incorrectly handled certain console functions. A remote attacker could use this issue to cause NSPR to crash, resulting in a denial of service, or possibly execute arbitrary code. The default compiler options for affected releases should reduce the vulnerability to a denial of service.

CVE-2014-1545

USN-2264-1: Linux kernel vulnerabilities - 27th June 2014

Salva Peiró discovered an information leak in the Linux kernel's media- device driver. A local attacker could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2014-1739) A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw ...

CVE-2014-1739 CVE-2014-3144 CVE-2014-3145

USN-2263-1: Linux kernel (OMAP4) vulnerabilities - 27th June 2014

Salva Peiró discovered an information leak in the Linux kernel's media- device driver. A local attacker could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2014-1739) A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw ...

CVE-2014-1739 CVE-2014-3144 CVE-2014-3145

USN-2262-1: Linux kernel (Quantal HWE) vulnerabilities - 27th June 2014

A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. (CVE-2014-3144) A remainder calculation error was discovered in the socket filter subsystem of the Linux kernel. ...

CVE-2014-3144 CVE-2014-3145

USN-2261-1: Linux kernel (Saucy HWE) vulnerabilities - 27th June 2014

Salva Peiró discovered an information leak in the Linux kernel's media- device driver. A local attacker could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2014-1739) A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw ...

CVE-2014-1739 CVE-2014-3144 CVE-2014-3145

USN-2260-1: Linux kernel (Trusty HWE) vulnerabilities - 27th June 2014

A flaw was discovered in the Linux kernel's pseudo tty (pty) device. An unprivileged user could exploit this flaw to cause a denial of service (system crash) or potentially gain administrator privileges. (CVE-2014-0196) Pinkie Pie discovered a flaw in the Linux kernel's futex subsystem. An unprivileged local user could exploit ...

CVE-2014-0077 CVE-2014-0196 CVE-2014-1737 CVE-2014-1738 CVE-2014-2568 CVE-2014-2851 CVE-2014-3122 CVE-2014-3153

USN-2259-1: Linux kernel vulnerabilities - 27th June 2014

Salva Peiró discovered an information leak in the Linux kernel's media- device driver. A local attacker could exploit this flaw to obtain sensitive information from kernel memory. (CVE-2014-1739) A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw ...

CVE-2014-1739 CVE-2014-3144 CVE-2014-3145

USN-2258-1: GnuPG vulnerability - 26th June 2014

Jean-René Reinhard, Olivier Levillain and Florian Maury discovered that GnuPG incorrectly handled certain OpenPGP messages. If a user or automated system were tricked into processing a specially-crafted message, GnuPG could consume resources, resulting in a denial of service.

CVE-2014-4617

USN-2257-1: Samba vulnerabilities - 26th June 2014

Christof Schmitt discovered that Samba incorrectly initialized a certain response field when vfs shadow copy was enabled. A remote authenticated attacker could use this issue to possibly obtain sensitive information. This issue only affected Ubuntu 13.10 and Ubuntu 14.04 LTS. (CVE-2014-0178) It was discovered that the Samba internal DNS server ...

CVE-2014-0178 CVE-2014-0239 CVE-2014-0244 CVE-2014-3493

USN-2256-1: Swift vulnerability - 25th June 2014

John Dickinson discovered that Swift did not properly quote the WWW-Authenticate header value. If a user were tricked into navigating to a malicious Swift URL, an attacker could conduct cross-site scripting attacks. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, ...

CVE-2014-3497

USN-2255-1: OpenStack Neutron vulnerabilities - 25th June 2014

Darragh O'Reilly discovered that the Ubuntu packaging for OpenStack Neutron did not properly set up its sudo configuration. If a different flaw was found in OpenStack Neutron, this vulnerability could be used to escalate privileges. (CVE-2013-6433) Stephen Ma and Christoph Thiel discovered that the openvswitch-agent in OpenStack Neutron did not ...

CVE-2013-6433 CVE-2014-0187 CVE-2014-4167

USN-2254-2: PHP updates - 25th June 2014

USN-2254-1 fixed vulnerabilities in PHP. The fix for CVE-2014-0185 further restricted the permissions on the PHP FastCGI Process Manager (FPM) UNIX socket. This update grants socket access to the www-data user and group so installations and documentation relying on the previous socket permissions will continue to function. Original advisory details: ...

LP: 1334337

USN-2254-1: PHP vulnerabilities - 23rd June 2014

Christian Hoffmann discovered that the PHP FastCGI Process Manager (FPM) set incorrect permissions on the UNIX socket. A local attacker could use this issue to possibly elevate their privileges. This issue only affected Ubuntu 12.04 LTS, Ubuntu 13.10, and Ubuntu 14.04 LTS. (CVE-2014-0185) Francisco Alonso discovered that the PHP Fileinfo ...

CVE-2014-0185 CVE-2014-0237 CVE-2014-0238 CVE-2014-4049

USN-2232-3: OpenSSL regression - 23rd June 2014

USN-2232-1 fixed vulnerabilities in OpenSSL. The upstream fix for CVE-2014-0224 caused a regression for certain applications that use renegotiation, such as PostgreSQL. This update fixes the problem. Original advisory details: Jüri Aedla discovered that OpenSSL incorrectly handled invalid DTLS fragments. A remote attacker could use this issue to cause OpenSSL ...

LP: 1332643

USN-2253-1: LibreOffice vulnerability - 23rd June 2014

It was discovered that LibreOffice unconditionally executed certain VBA macros, contrary to user expectations.

CVE-2014-0247

USN-2252-1: Linux kernel (EC2) vulnerabilities - 20th June 2014

A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. (CVE-2014-3144) A remainder calculation error was discovered in the socket filter subsystem of the Linux kernel. ...

CVE-2014-3144 CVE-2014-3145

USN-2251-1: Linux kernel vulnerabilities - 20th June 2014

A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. (CVE-2014-3144) A remainder calculation error was discovered in the socket filter subsystem of the Linux kernel. ...

CVE-2014-3144 CVE-2014-3145

USN-2250-1: Thunderbird vulnerabilities - 19th June 2014

Gary Kwong, Christoph Diehl, Christian Holler, Hannes Verschore, Jan de Mooij, Ryan VanderMeulen, Jeff Walden and Kyle Huey discovered multiple memory safety issues in Thunderbird. If a user were tricked in to opening a specially crafted message with scripting enabled, an attacker could potentially exploit these to cause a denial ...

CVE-2014-1533 CVE-2014-1538 CVE-2014-1541 LP: 1328003

USN-2249-1: OpenStack Heat vulnerability - 18th June 2014

Jason Dunsmore discovered that OpenStack heat did not properly restrict access to template information. A remote authenticated attacker could exploit this to see URL provider templates of other tenants for a limited time.

CVE-2014-3801

USN-2248-1: OpenStack Cinder vulnerability - 18th June 2014

Darragh O'Reilly discovered that the Ubuntu packaging for OpenStack Cinder did not properly set up its sudo configuration. If a different flaw was found in OpenStack Cinder, this vulnerability could be used to escalate privileges. (CVE-2013-1068)

CVE-2013-1068

USN-2247-1: OpenStack Nova vulnerabilities - 17th June 2014

Darragh O'Reilly discovered that the Ubuntu packaging for OpenStack Nova did not properly set up its sudo configuration. If a different flaw was found in OpenStack Nova, this vulnerability could be used to escalate privileges. This issue only affected Ubuntu 13.10 and Ubuntu 14.04 LTS. (CVE-2013-1068) Bernhard M. Wiedemann and ...

CVE-2013-1068 CVE-2013-4463 CVE-2013-4469 CVE-2013-6491 CVE-2013-7130 CVE-2014-0134 CVE-2014-0167

USN-2246-1: APT vulnerability - 17th June 2014

Jakub Wilk discovered that APT did not correctly validate signatures when downloading source packages. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could potentially be used to install altered source packages.

CVE-2014-0478

USN-2214-3: libxml2 regression - 17th June 2014

USN-2214-1 fixed vulnerabilities in libxml2. The upstream fix introduced a number of regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Daniel Berrange discovered that libxml2 would incorrectly perform entity substitution even when requested not to. If a user or automated system were tricked into ...

LP: 1321869

USN-2232-2: OpenSSL regression - 12th June 2014

USN-2232-1 fixed vulnerabilities in OpenSSL. The upstream fix for CVE-2014-0224 caused a regression for certain applications that use tls_session_secret_cb, such as wpa_supplicant. This update fixes the problem. Original advisory details: Jüri Aedla discovered that OpenSSL incorrectly handled invalid DTLS fragments. A remote attacker could use this issue to cause OpenSSL ...

LP: 1329297

USN-2245-1: json-c vulnerabilities - 12th June 2014

Florian Weimer discovered that json-c incorrectly handled buffer lengths. An attacker could use this issue with a specially-crafted large JSON document to cause json-c to crash, resulting in a denial of service. (CVE-2013-6370) Florian Weimer discovered that json-c incorrectly handled hash arrays. An attacker could use this issue with a ...

CVE-2013-6370 CVE-2013-6371

USN-2244-1: Libav vulnerability - 11th June 2014

It was discovered that Libav incorrectly handled certain malformed media files. If a user were tricked into opening a crafted media file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program.

CVE-2014-3984

USN-2243-1: Firefox vulnerabilities - 11th June 2014

Gary Kwong, Christoph Diehl, Christian Holler, Hannes Verschore, Jan de Mooij, Ryan VanderMeulen, Jeff Walden, Kyle Huey, Jesse Ruderman, Gregor Wagner, Benoit Jacob and Karl Tomlinson discovered multiple memory safety issues in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit ...

CVE-2014-1533 CVE-2014-1534 CVE-2014-1536 CVE-2014-1537 CVE-2014-1538 CVE-2014-1540 CVE-2014-1541 CVE-2014-1542 LP: 1326690

USN-2242-1: dpkg vulnerabilities - 10th June 2014

It was discovered that dpkg incorrectly handled certain patches when unpacking source packages. If a user or an automated system were tricked into unpacking a specially crafted source package, a remote attacker could modify files outside the target unpack directory, leading to a denial of service or potentially gaining access ...

CVE-2014-3864 CVE-2014-3865

USN-2214-2: libxml2 regression - 9th June 2014

USN-2214-1 fixed vulnerabilities in libxml2. The upstream fix introduced a regression when using xmllint with the --postvalid option. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Daniel Berrange discovered that libxml2 would incorrectly perform entity substitution even when requested not to. If a user or ...

LP: 1321869

USN-2241-1: Linux kernel vulnerabilities - 5th June 2014

Pinkie Pie discovered a flaw in the Linux kernel's futex subsystem. An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or gain administrative privileges. (CVE-2014-3153) A flaw was discovered in the Linux kernel virtual machine's (kvm) validation of interrupt requests (irq). A guest ...

CVE-2014-0155 CVE-2014-2568 CVE-2014-3122 CVE-2014-3153

USN-2240-1: Linux kernel vulnerabilities - 5th June 2014

Pinkie Pie discovered a flaw in the Linux kernel's futex subsystem. An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or gain administrative privileges. (CVE-2014-3153) An information leak was discovered in the netfilter subsystem of the Linux kernel. An attacker could exploit this ...

CVE-2014-2568 CVE-2014-3122 CVE-2014-3153

USN-2239-1: Linux kernel (Saucy HWE) vulnerabilities - 5th June 2014

Pinkie Pie discovered a flaw in the Linux kernel's futex subsystem. An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or gain administrative privileges. (CVE-2014-3153) A flaw was discovered in the Linux kernel virtual machine's (kvm) validation of interrupt requests (irq). A guest ...

CVE-2014-0155 CVE-2014-2568 CVE-2014-3122 CVE-2014-3153

USN-2238-1: Linux kernel (Raring HWE) vulnerabilities - 5th June 2014

Pinkie Pie discovered a flaw in the Linux kernel's futex subsystem. An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or gain administrative privileges. (CVE-2014-3153) A flaw was discovered in the Linux kernel's IPC reference counting. An unprivileged local user could exploit this ...

CVE-2013-4483 CVE-2014-3153

USN-2237-1: Linux kernel (Quantal HWE) vulnerability - 5th June 2014

Pinkie Pie discovered a flaw in the Linux kernel's futex subsystem. An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or gain administrative privileges.

CVE-2014-3153

USN-2236-1: Linux kernel (OMAP4) vulnerabilities - 5th June 2014

Pinkie Pie discovered a flaw in the Linux kernel's futex subsystem. An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or gain administrative privileges. (CVE-2014-3153) A flaw was discovered in the vhost-net subsystem of the Linux kernel. Guest OS users could exploit this ...

CVE-2014-0055 CVE-2014-3122 CVE-2014-3153

USN-2235-1: Linux kernel vulnerabilities - 5th June 2014

Pinkie Pie discovered a flaw in the Linux kernel's futex subsystem. An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or gain administrative privileges. (CVE-2014-3153) A flaw was discovered in the vhost-net subsystem of the Linux kernel. Guest OS users could exploit this ...

CVE-2014-0055 CVE-2014-3122 CVE-2014-3153

USN-2234-1: Linux kernel (EC2) vulnerabilities - 5th June 2014

Pinkie Pie discovered a flaw in the Linux kernel's futex subsystem. An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or gain administrative privileges. (CVE-2014-3153) Dmitry Vyukov reported a flaw in the Linux kernel's handling of IPv6 UDP Fragmentation Offload (UFO) processing. A ...

CVE-2013-4387 CVE-2013-4470 CVE-2013-4483 CVE-2014-1438 CVE-2014-3122 CVE-2014-3153

Show: All