Ubuntu security notices

These are the Ubuntu security notices that affect the current supported releases of Ubuntu. These notices are also posted to the ubuntu-security-announce mailing list (list archive). To report a security vulnerability in an Ubuntu package, please file a bug, or contact security@ubuntu.com. You may also be interested in learning about Ubuntu security policies. For more details on a specific CVE or source package, please see the Ubuntu CVE Tracker.

You can also view the latest notices by subscribing to the RSS or the Atom feeds.

< Previous   Showing page 2 of 17   Next >
Show: All  

USN-2282-1: Linux kernel vulnerabilities - 16th July 2014

Sasha Levin reported a flaw in the Linux kernel's point-to-point protocol (PPP) when used with the Layer Two Tunneling Protocol (L2TP). A local user could exploit this flaw to gain administrative privileges. (CVE-2014-4943) An flaw was discovered in the Linux kernel's audit subsystem when auditing certain syscalls. A local attacker ...

CVE-2014-3917 CVE-2014-4608 CVE-2014-4943

USN-2281-1: Linux kernel (EC2) vulnerabilities - 16th July 2014

Sasha Levin reported a flaw in the Linux kernel's point-to-point protocol (PPP) when used with the Layer Two Tunneling Protocol (L2TP). A local user could exploit this flaw to gain administrative privileges. (CVE-2014-4943) An flaw was discovered in the Linux kernel's audit subsystem when auditing certain syscalls. A local attacker ...

CVE-2014-3917 CVE-2014-4608 CVE-2014-4943

USN-2278-1: file vulnerabilities - 15th July 2014

Mike Frysinger discovered that the file awk script detector used multiple wildcard with unlimited repetitions. An attacker could use this issue to cause file to consume resources, resulting in a denial of service. (CVE-2013-7345) Francisco Alonso discovered that file incorrectly handled certain CDF documents. A attacker could use this issue ...

CVE-2013-7345 CVE-2014-0207 CVE-2014-3478 CVE-2014-3479 CVE-2014-3480 CVE-2014-3487 CVE-2014-3538

USN-2276-1: PHP vulnerabilities - 9th July 2014

Francisco Alonso discovered that the PHP Fileinfo component incorrectly handled certain CDF documents. A remote attacker could use this issue to cause PHP to hang or crash, resulting in a denial of service. (CVE-2014-0207, CVE-2014-3478, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487) Stefan Esser discovered that PHP incorrectly handled unserializing SPL extension objects. An ...

CVE-2014-0207 CVE-2014-3478 CVE-2014-3479 CVE-2014-3480 CVE-2014-3487 CVE-2014-3515 CVE-2014-4670 CVE-2014-4698 CVE-2014-4721

USN-2267-1: Linux kernel (EC2) vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2266-1: Linux kernel vulnerability - 5th July 2014

Andy Lutomirski discovered a flaw with the Linux kernel's ptrace syscall on x86_64 processors. An attacker could exploit this flaw to cause a denial of service (System Crash) or potential gain administrative privileges.

CVE-2014-4699

USN-2265-1: NSPR vulnerability - 2nd July 2014

Abhishek Arya discovered that NSPR incorrectly handled certain console functions. A remote attacker could use this issue to cause NSPR to crash, resulting in a denial of service, or possibly execute arbitrary code. The default compiler options for affected releases should reduce the vulnerability to a denial of service.

CVE-2014-1545

USN-2258-1: GnuPG vulnerability - 26th June 2014

Jean-René Reinhard, Olivier Levillain and Florian Maury discovered that GnuPG incorrectly handled certain OpenPGP messages. If a user or automated system were tricked into processing a specially-crafted message, GnuPG could consume resources, resulting in a denial of service.

CVE-2014-4617

USN-2257-1: Samba vulnerabilities - 26th June 2014

Christof Schmitt discovered that Samba incorrectly initialized a certain response field when vfs shadow copy was enabled. A remote authenticated attacker could use this issue to possibly obtain sensitive information. This issue only affected Ubuntu 13.10 and Ubuntu 14.04 LTS. (CVE-2014-0178) It was discovered that the Samba internal DNS server ...

CVE-2014-0178 CVE-2014-0239 CVE-2014-0244 CVE-2014-3493

USN-2254-1: PHP vulnerabilities - 23rd June 2014

Christian Hoffmann discovered that the PHP FastCGI Process Manager (FPM) set incorrect permissions on the UNIX socket. A local attacker could use this issue to possibly elevate their privileges. This issue only affected Ubuntu 12.04 LTS, Ubuntu 13.10, and Ubuntu 14.04 LTS. (CVE-2014-0185) Francisco Alonso discovered that the PHP Fileinfo ...

CVE-2014-0185 CVE-2014-0237 CVE-2014-0238 CVE-2014-4049

USN-2232-3: OpenSSL regression - 23rd June 2014

USN-2232-1 fixed vulnerabilities in OpenSSL. The upstream fix for CVE-2014-0224 caused a regression for certain applications that use renegotiation, such as PostgreSQL. This update fixes the problem. Original advisory details: Jüri Aedla discovered that OpenSSL incorrectly handled invalid DTLS fragments. A remote attacker could use this issue to cause OpenSSL ...

LP: 1332643

USN-2252-1: Linux kernel (EC2) vulnerabilities - 20th June 2014

A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. (CVE-2014-3144) A remainder calculation error was discovered in the socket filter subsystem of the Linux kernel. ...

CVE-2014-3144 CVE-2014-3145

USN-2251-1: Linux kernel vulnerabilities - 20th June 2014

A bounds check error was discovered in the socket filter subsystem of the Linux kernel. A local user could exploit this flaw to cause a denial of service (system crash) via crafted BPF instructions. (CVE-2014-3144) A remainder calculation error was discovered in the socket filter subsystem of the Linux kernel. ...

CVE-2014-3144 CVE-2014-3145

USN-2246-1: APT vulnerability - 17th June 2014

Jakub Wilk discovered that APT did not correctly validate signatures when downloading source packages. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could potentially be used to install altered source packages.

CVE-2014-0478

USN-2214-3: libxml2 regression - 17th June 2014

USN-2214-1 fixed vulnerabilities in libxml2. The upstream fix introduced a number of regressions. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Daniel Berrange discovered that libxml2 would incorrectly perform entity substitution even when requested not to. If a user or automated system were tricked into ...

LP: 1321869

USN-2242-1: dpkg vulnerabilities - 10th June 2014

It was discovered that dpkg incorrectly handled certain patches when unpacking source packages. If a user or an automated system were tricked into unpacking a specially crafted source package, a remote attacker could modify files outside the target unpack directory, leading to a denial of service or potentially gaining access ...

CVE-2014-3864 CVE-2014-3865

USN-2214-2: libxml2 regression - 9th June 2014

USN-2214-1 fixed vulnerabilities in libxml2. The upstream fix introduced a regression when using xmllint with the --postvalid option. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Daniel Berrange discovered that libxml2 would incorrectly perform entity substitution even when requested not to. If a user or ...

LP: 1321869

USN-2234-1: Linux kernel (EC2) vulnerabilities - 5th June 2014

Pinkie Pie discovered a flaw in the Linux kernel's futex subsystem. An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or gain administrative privileges. (CVE-2014-3153) Dmitry Vyukov reported a flaw in the Linux kernel's handling of IPv6 UDP Fragmentation Offload (UFO) processing. A ...

CVE-2013-4387 CVE-2013-4470 CVE-2013-4483 CVE-2014-1438 CVE-2014-3122 CVE-2014-3153

USN-2233-1: Linux kernel vulnerabilities - 5th June 2014

Pinkie Pie discovered a flaw in the Linux kernel's futex subsystem. An unprivileged local user could exploit this flaw to cause a denial of service (system crash) or gain administrative privileges. (CVE-2014-3153) Dmitry Vyukov reported a flaw in the Linux kernel's handling of IPv6 UDP Fragmentation Offload (UFO) processing. A ...

CVE-2013-4387 CVE-2013-4470 CVE-2013-4483 CVE-2014-1438 CVE-2014-3122 CVE-2014-3153

USN-2232-1: OpenSSL vulnerabilities - 5th June 2014

Jüri Aedla discovered that OpenSSL incorrectly handled invalid DTLS fragments. A remote attacker could use this issue to cause OpenSSL to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 12.04 LTS, Ubuntu 13.10, and Ubuntu 14.04 LTS. (CVE-2014-0195) Imre Rad discovered ...

CVE-2014-0195 CVE-2014-0221 CVE-2014-0224 CVE-2014-3470

USN-2230-1: chkrootkit vulnerability - 4th June 2014

Thomas Stangner discovered that chkrootkit incorrectly quoted certain values. A local attacker could use this issue to execute arbitrary code when chkrootkit is run and gain root privileges.

CVE-2014-0476

USN-2229-1: GnuTLS vulnerability - 2nd June 2014

Joonas Kuorilehto discovered that GnuTLS incorrectly handled Server Hello messages. A malicious remote server or a man in the middle could use this issue to cause GnuTLS to crash, resulting in a denial of service, or possibly execute arbitrary code.

CVE-2014-3466

USN-2220-1: Linux kernel (EC2) vulnerabilities - 26th May 2014

Matthew Daley reported an information leak in the floppy disk driver of the Linux kernel. An unprivileged local user could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1738) Matthew Daley reported a flaw in the handling of ioctl commands by the floppy disk driver in the ...

CVE-2013-7339 CVE-2014-1737 CVE-2014-1738 CVE-2014-2678

USN-2219-1: Linux kernel vulnerabilities - 26th May 2014

Matthew Daley reported an information leak in the floppy disk driver of the Linux kernel. An unprivileged local user could exploit this flaw to obtain potentially sensitive information from kernel memory. (CVE-2014-1738) Matthew Daley reported a flaw in the handling of ioctl commands by the floppy disk driver in the ...

CVE-2013-7339 CVE-2014-1737 CVE-2014-1738 CVE-2014-2678

USN-2218-1: Xalan-Java vulnerability - 21st May 2014

Nicolas Gregoire discovered that Xalan-Java incorrectly handled certain properties when the secure processing feature was enabled. An attacker could possibly use this issue to load arbitrary classes or access external resources.

CVE-2014-0107

USN-2214-1: libxml2 vulnerability - 15th May 2014

Daniel Berrange discovered that libxml2 would incorrectly perform entity substitution even when requested not to. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly cause resource consumption, resulting in a denial of service.

CVE-2014-0191

USN-2213-1: Dovecot vulnerability - 15th May 2014

It was discovered that Dovecot incorrectly handled closing inactive SSL/TLS connections. A remote attacker could use this issue to cause Dovecot to stop responding to new connections, resulting in a denial of service.

CVE-2014-3430

USN-2212-1: Django vulnerabilities - 14th May 2014

Stephen Stewart, Michael Nelson, Natalia Bidart and James Westby discovered that Django improperly removed Vary and Cache-Control headers from HTTP responses when replying to a request from an Internet Explorer or Chrome Frame client. An attacker may use this to retrieve private data or poison caches. This update removes workarounds ...

CVE-2014-1418

USN-2211-1: libXfont vulnerabilities - 14th May 2014

Ilja van Sprundel discovered that libXfont incorrectly handled font metadata file parsing. A local attacker could use this issue to cause libXfont to crash, or possibly execute arbitrary code in order to gain privileges. (CVE-2014-0209) Ilja van Sprundel discovered that libXfont incorrectly handled X Font Server replies. A malicious font ...

CVE-2014-0209 CVE-2014-0210 CVE-2014-0211

USN-2205-1: LibTIFF vulnerabilities - 6th May 2014

Pedro Ribeiro discovered that LibTIFF incorrectly handled certain malformed images when using the gif2tiff tool. If a user or automated system were tricked into opening a specially crafted GIF image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user ...

CVE-2013-4231 CVE-2013-4232 CVE-2013-4243 CVE-2013-4244

USN-2197-1: Linux kernel (EC2) vulnerability - 5th May 2014

A flaw was discovered in the Linux kernel's pseudo tty (pty) device. An unprivileged user could exploit this flaw to cause a denial of service (system crash) or potentially gain administrator privileges.

CVE-2014-0196

USN-2196-1: Linux kernel vulnerability - 5th May 2014

A flaw was discovered in the Linux kernel's pseudo tty (pty) device. An unprivileged user could exploit this flaw to cause a denial of service (system crash) or potentially gain administrator privileges.

CVE-2014-0196

USN-2191-1: OpenJDK 6 vulnerabilities - 1st May 2014

Several vulnerabilities were discovered in the OpenJDK JRE related to information disclosure, data integrity and availability. An attacker could exploit these to cause a denial of service or expose sensitive data over the network. (CVE-2014-0429, CVE-2014-0446, CVE-2014-0451, CVE-2014-0452, CVE-2014-0456, CVE-2014-0457, CVE-2014-0458, CVE-2014-0461, CVE-2014-0462, CVE-2014-2397, CVE-2014-2405, CVE-2014-2412, CVE-2014-2414, CVE-2014-2421, CVE-2014-2423, CVE-2014-2427) ...

CVE-2014-0429 CVE-2014-0446 CVE-2014-0451 CVE-2014-0452 CVE-2014-0453 CVE-2014-0456 CVE-2014-0457 CVE-2014-0458 CVE-2014-0459 CVE-2014-0460 CVE-2014-0461 CVE-2014-0462 CVE-2014-1876 CVE-2014-2397 CVE-2014-2398 CVE-2014-2403 CVE-2014-2405 CVE-2014-2412 CVE-2014-2414 CVE-2014-2421 CVE-2014-2423 CVE-2014-2427

USN-2183-2: dpkg vulnerability - 1st May 2014

USN-2183-1 fixed a vulnerability in dpkg. Javier Serrano Polo discovered that the fix introduced a vulnerability in releases with an older version of the patch utility. This update fixes the problem. Original advisory details: Jakub Wilk discovered that dpkg incorrectly certain paths and symlinks when unpacking source packages. If a ...

CVE-2014-0471

USN-2183-1: dpkg vulnerability - 28th April 2014

Jakub Wilk discovered that dpkg incorrectly certain paths and symlinks when unpacking source packages. If a user or an automated system were tricked into unpacking a specially crafted source package, a remote attacker could modify files outside the target unpack directory, leading to a denial of service or potentially gaining ...

CVE-2014-0471

USN-2182-1: QEMU vulnerabilities - 28th April 2014

Michael S. Tsirkin discovered that QEMU incorrectly handled vmxnet3 devices. A local guest could possibly use this issue to cause a denial of service, or possibly execute arbitrary code on the host. This issue only applied to Ubuntu 13.10 and Ubuntu 14.04 LTS. (CVE-2013-4544) Michael S. Tsirkin discovered that QEMU ...

CVE-2013-4544 CVE-2014-0150 CVE-2014-2894

USN-2174-1: Linux kernel (EC2) vulnerabilities - 26th April 2014

A flaw was discovered in the Linux kernel's handling of the SCTP handshake. A remote attacker could exploit this flaw to cause a denial of service (system crash). (CVE-2014-0101) An error was discovered in the Linux kernel's DCCP protocol support. A remote attacked could exploit this flaw to cause a ...

CVE-2014-0101 CVE-2014-2523

USN-2173-1: Linux kernel vulnerabilities - 26th April 2014

A flaw was discovered in the Linux kernel's handling of the SCTP handshake. A remote attacker could exploit this flaw to cause a denial of service (system crash). (CVE-2014-0101) An error was discovered in the Linux kernel's DCCP protocol support. A remote attacked could exploit this flaw to cause a ...

CVE-2014-0101 CVE-2014-2523

USN-2172-1: CUPS vulnerability - 24th April 2014

Alex Korobkin discovered that the CUPS web interface incorrectly protected against cross-site scripting (XSS) attacks. If an authenticated user were tricked into visiting a malicious website while logged into CUPS, a remote attacker could modify the CUPS configuration and possibly steal confidential data.

CVE-2014-2856

USN-2169-2: Django regression - 22nd April 2014

USN-2169-1 fixed vulnerabilities in Django. The upstream security patch for CVE-2014-0472 introduced a regression for certain applications. This update fixes the problem. Original advisory details: Benjamin Bach discovered that Django incorrectly handled dotted Python paths when using the reverse() function. An attacker could use this issue to cause Django to ...

LP: 1311433

USN-2169-1: Django vulnerabilities - 22nd April 2014

Benjamin Bach discovered that Django incorrectly handled dotted Python paths when using the reverse() function. An attacker could use this issue to cause Django to import arbitrary modules from the Python path, resulting in possible code execution. (CVE-2014-0472) Paul McMillan discovered that Django incorrectly cached certain pages that contained CSRF ...

CVE-2014-0472 CVE-2014-0473 CVE-2014-0474

USN-2168-1: Python Imaging Library vulnerabilities - 15th April 2014

Jakub Wilk discovered that the Python Imaging Library incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files, or gain access to temporary file contents. (CVE-2014-1932, CVE-2014-1933)

CVE-2014-1932 CVE-2014-1933

USN-2167-1: curl vulnerabilities - 14th April 2014

Steve Holme discovered that libcurl incorrectly reused wrong connections when using protocols other than HTTP and FTP. This could lead to the use of unintended credentials, possibly exposing sensitive information. (CVE-2014-0138) Richard Moore discovered that libcurl incorrectly validated wildcard SSL certificates that contain literal IP addresses. An attacker could possibly ...

CVE-2014-0138 CVE-2014-0139

USN-2166-1: Net-SNMP vulnerabilities - 14th April 2014

Ken Farnen discovered that Net-SNMP incorrectly handled AgentX timeouts. A remote attacker could use this issue to cause the server to crash or to hang, resulting in a denial of service. (CVE-2012-6151) It was discovered that the Net-SNMP ICMP-MIB incorrectly validated input. A remote attacker could use this issue to ...

CVE-2012-6151 CVE-2014-2284 CVE-2014-2285 CVE-2014-2310

USN-2124-2: OpenJDK 6 regression - 7th April 2014

USN-2124-1 fixed vulnerabilities in OpenJDK 6. Due to an upstream regression, memory was not properly zeroed under certain circumstances which could lead to instability. This update fixes the problem. We apologize for the inconvenience. Original advisory details: A vulnerability was discovered in the OpenJDK JRE related to information disclosure and ...

LP: 1295987

USN-2163-1: PHP vulnerability - 7th April 2014

It was discovered that PHP's embedded libmagic library incorrectly handled PE executables. An attacker could use this issue to cause PHP to crash, resulting in a denial of service.

CVE-2014-2270

USN-2162-1: file vulnerability - 7th April 2014

It was discovered that file incorrectly handled PE executable files. An attacker could use this issue to cause file to crash, resulting in a denial of service.

CVE-2014-2270

USN-2159-1: NSS vulnerability - 2nd April 2014

It was discovered that NSS incorrectly handled wildcard certificates when used with internationalized domain names. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to spoof SSL servers.

CVE-2014-1492

USN-2156-1: Samba vulnerability - 26th March 2014

Andrew Bartlett discovered that Samba did not properly enforce the password guessing protection mechanism for all interfaces. A remote attacker could use this issue to possibly attempt to brute force user passwords.

CVE-2013-4496

USN-2155-1: OpenSSH vulnerability - 25th March 2014

Jann Horn discovered that OpenSSH incorrectly handled wildcards in AcceptEnv lines. A remote attacker could use this issue to possibly bypass certain intended environment variable restrictions.

CVE-2014-2532

< Previous   Showing page 2 of 17   Next >
Show: All