Lucene search
K
UbuntuRecent

10918 matches found

Ubuntu
Ubuntu
added 2021/08/09 3:30 p.m.114 views

USN-5033-1: Perl vulnerability

It was discovered that the Perl Encode library incorrectly handled paths. A local attacker could possibly use this issue to trick the library into executing arbitrary code from the current working directory...

7.8CVSS7.8AI score0.01397EPSS
Exploits0
Ubuntu
Ubuntu
added 2021/08/09 12:33 p.m.89 views

USN-5032-2: Docker vulnerabilities

USN-5032-1 fixed vulnerabilities in Docker. This update provides the corresponding updates for Ubuntu 21.04. Original advisory details: Several vulnerabilities were fixed in Docker. This update provides a new upstream version that fixed them...

5.3AI score
Exploits0References1
Ubuntu
Ubuntu
added 2021/08/05 1:32 p.m.90 views

USN-5032-1: Docker vulnerabilities

Several vulnerabilities were fixed in Docker. This update provides a new upstream version that fixed them...

5.3AI score
Exploits0References1
Ubuntu
Ubuntu
added 2021/08/04 4:18 p.m.92 views

USN-5031-1: openCryptoki vulnerability

It was discovered that openCryptoki incorrectly handled certain EC keys. An attacker could possibly use this issue to cause a invalid curve attack...

5.5AI score
Exploits0References1
Ubuntu
Ubuntu
added 2021/08/04 1:9 p.m.112 views

USN-5027-2: PEAR vulnerability

USN-5027-1 fixed a vulnerability in PEAR. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: It was discovered that PEAR incorrectly handled symbolic links in archives. A remote attacker could possibly use this issue to execute arbitrary code...

7.1CVSS7.8AI score0.73377EPSS
Exploits0
Ubuntu
Ubuntu
added 2021/08/04 11:8 a.m.143 views

USN-5030-1: Perl DBI module vulnerabilities

It was discovered that the Perl DBI module incorrectly opened files outside of the folder specified in the data source name. A remote attacker could possibly use this issue to obtain sensitive information. CVE-2014-10402 It was discovered that the Perl DBI module incorrectly handled certain long...

7.1CVSS7AI score0.00602EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/08/02 5:25 p.m.127 views

USN-5029-1: GnuTLS vulnerabilities

It was discovered that GnuTLS incorrectly handled sending certain extensions when being used as a client. A remote attacker could use this issue to cause GnuTLS to crash, resulting in a denial of service, or possibly execute arbitrary code...

9.8CVSS7.4AI score0.03751EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/08/02 4:3 p.m.154 views

USN-5028-1: Exiv2 vulnerability

It was discovered that Exiv2 incorrectly handled certain images. An attacker could possibly use this issue to cause a denial of service...

6.6AI score
Exploits0
Ubuntu
Ubuntu
added 2021/08/02 2:15 p.m.101 views

USN-5026-2: QPDF vulnerabilities

USN-5026-1 fixed several vulnerabilities in QPDF. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: It was discovered that QPDF incorrectly handled certain malformed PDF files. A remote attacker could use this issue to cause QPDF to consume resources,...

5.5CVSS5.4AI score0.01281EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/07/29 4:35 p.m.128 views

USN-5027-1: PEAR vulnerability

It was discovered that PEAR incorrectly handled symbolic links in archives. A remote attacker could possibly use this issue to execute arbitrary code...

7.1CVSS7.8AI score0.73377EPSS
Exploits0
Ubuntu
Ubuntu
added 2021/07/29 4:28 p.m.112 views

USN-5026-1: QPDF vulnerabilities

It was discovered that QPDF incorrectly handled certain malformed PDF files. A remote attacker could use this issue to cause QPDF to consume resources, resulting in a denial of service. This issue only affected Ubuntu 18.04 LTS. CVE-2018-18020 It was discovered that QPDF incorrectly handled certa...

5.5CVSS5.4AI score0.01281EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/07/29 12:44 p.m.120 views

USN-5025-2: libsndfile vulnerability

USN-5025-1 fixed a vulnerability in libsndfile. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that libsndfile incorrectly handled certain malformed files. A remote attacker could use this issue to cause...

8.8CVSS8.2AI score0.03292EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/07/29 2:2 a.m.156 views

USN-5025-1: libsndfile vulnerability

It was discovered that libsndfile incorrectly handled certain malformed files. A remote attacker could use this issue to cause libsndfile to crash, resulting in a denial of service, or possibly execute arbitrary code...

8.8CVSS8.2AI score0.03292EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/07/28 6:14 p.m.85 views

USN-4944-2: MariaDB regression

USN-4944-1 fixed vulnerabilities in MariaDB. It caused a regression. This update fixes the problem. Original advisory details: Ubuntu 20.04 has been updated to MariaDB 10.3.30...

5.3AI score
Exploits0References1
Ubuntu
Ubuntu
added 2021/07/28 4:33 p.m.126 views

USN-5024-1: WebKitGTK vulnerabilities

A large number of security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service...

9.3CVSS7.1AI score0.03692EPSS
Exploits5
Ubuntu
Ubuntu
added 2021/07/26 3:5 p.m.118 views

USN-5023-1: Aspell vulnerability

It was discovered that Aspell incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code or cause a crash...

7.8CVSS7.8AI score0.00549EPSS
Exploits0
Ubuntu
Ubuntu
added 2021/07/26 2:12 p.m.212 views

USN-5022-1: MySQL vulnerabilities

Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 8.0.26 in Ubuntu 20.04 LTS and Ubuntu 21.04. Ubuntu 18.04 LTS has been updated to MySQL 5.7.35. In addition to security fixes, the updated packages...

8CVSS6.9AI score0.41478EPSS
Exploits0
Ubuntu
Ubuntu
added 2021/07/26 8:29 a.m.170 views

LSN-0079-1: Kernel Live Patch Security Notice

It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers when performing div and mod operations. A local attacker could use this to possibly execute arbitrary code.CVE-2021-3600 It was discovered that the virtual file system...

7.8CVSS7.2AI score0.09729EPSS
Exploits6
Ubuntu
Ubuntu
added 2021/07/22 6:17 p.m.143 views

USN-5021-1: curl vulnerabilities

Harry Sintonen and Tomas Hoger discovered that curl incorrectly handled TELNET connections when the -t option was used on the command line. Uninitialized data possibly containing sensitive information could be sent to the remote server, contrary to expectations. CVE-2021-22898, CVE-2021-22925 Har...

5.3CVSS6.5AI score0.0627EPSS
Exploits3
Ubuntu
Ubuntu
added 2021/07/21 2:20 p.m.138 views

USN-5020-1: Ruby vulnerabilities

It was discovered that Ruby incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. CVE-2021-31799 It was discovered that Ruby incorrectly handled certain inputs. An attacker could possibly use this issue to conduct port scans and service banner...

7.4CVSS7.5AI score0.0305EPSS
Exploits2
Ubuntu
Ubuntu
added 2021/07/21 1:8 p.m.204 views

USN-4336-2: GNU binutils vulnerabilities

USN-4336-1 fixed several vulnerabilities in GNU binutils. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: It was discovered that GNU binutils contained a large number of security issues. If a user or automated system were tricked into processing a...

9.8CVSS7AI score0.08544EPSS
Exploits67
Ubuntu
Ubuntu
added 2021/07/21 1:27 a.m.139 views

USN-5019-1: NVIDIA graphics drivers vulnerabilities

It was discovered that an assert could be triggered in the NVIDIA graphics drivers. A local attacker could use this to cause a denial of service. CVE-2021-1093 It was discovered that the NVIDIA graphics drivers permitted an out-of-bounds array access. A local attacker could use this to cause a...

6.2CVSS5.7AI score0.00414EPSS
Exploits0
Ubuntu
Ubuntu
added 2021/07/20 10:11 p.m.170 views

USN-5018-1: Linux kernel vulnerabilities

It was discovered that the virtual file system implementation in the Linux kernel contained an unsigned to signed integer conversion error. A local attacker could use this to cause a denial of service system crash or execute arbitrary code. CVE-2021-33909 Piotr Krysiuk discovered that the eBPF...

7.8CVSS7.5AI score0.09729EPSS
Exploits11
Ubuntu
Ubuntu
added 2021/07/20 9:48 p.m.176 views

USN-5017-1: Linux kernel vulnerabilities

It was discovered that the virtual file system implementation in the Linux kernel contained an unsigned to signed integer conversion error. A local attacker could use this to cause a denial of service system crash or execute arbitrary code. CVE-2021-33909 It was discovered that the bluetooth...

7.8CVSS7.2AI score0.09729EPSS
Exploits6
Ubuntu
Ubuntu
added 2021/07/20 9:33 p.m.139 views

USN-5014-1: Linux kernel vulnerability

It was discovered that the virtual file system implementation in the Linux kernel contained an unsigned to signed integer conversion error. A local attacker could use this to cause a denial of service system crash or execute arbitrary code...

7.8CVSS7.2AI score0.09729EPSS
Exploits6
Ubuntu
Ubuntu
added 2021/07/20 9:29 p.m.156 views

USN-5016-1: Linux kernel vulnerabilities

It was discovered that the virtual file system implementation in the Linux kernel contained an unsigned to signed integer conversion error. A local attacker could use this to cause a denial of service system crash or execute arbitrary code. CVE-2021-33909 Or Cohen and Nadav Markus discovered a...

7.8CVSS7.5AI score0.09729EPSS
Exploits8
Ubuntu
Ubuntu
added 2021/07/20 9:22 p.m.168 views

USN-5015-1: Linux kernel (OEM) vulnerabilities

It was discovered that the virtual file system implementation in the Linux kernel contained an unsigned to signed integer conversion error. A local attacker could use this to cause a denial of service system crash or execute arbitrary code. CVE-2021-33909 Michael Brown discovered that the Xen...

7.8CVSS7.5AI score0.09729EPSS
Exploits8
Ubuntu
Ubuntu
added 2021/07/20 5:36 p.m.185 views

USN-5013-2: systemd vulnerabilities

USN-5013-1 fixed several vulnerabilities in systemd. This update provides the corresponding update for Ubuntu 16.04 ESM. Original advisory details: It was discovered that systemd incorrectly handled certain mount paths. A local attacker could possibly use this issue to cause systemd to crash,...

6.1CVSS6.7AI score0.0865EPSS
Exploits3
Ubuntu
Ubuntu
added 2021/07/20 3:40 p.m.157 views

USN-5013-1: systemd vulnerabilities

It was discovered that systemd incorrectly handled certain mount paths. A local attacker could possibly use this issue to cause systemd to crash, resulting in a denial of service. CVE-2021-33910 Mitchell Frank discovered that systemd incorrectly handled DHCP FORCERENEW packets. A remote attacker...

6.1CVSS6.6AI score0.0865EPSS
Exploits3
Ubuntu
Ubuntu
added 2021/07/20 10:56 a.m.122 views

USN-5012-1: containerd vulnerabilities

It was discovered that containerd incorrectly handled file permission changes. If a user or automated system were tricked into launching a specially crafted container image, a remote attacker could change permissions on files on the host filesystem and possibly escalate privileges...

6.8CVSS6.5AI score0.01608EPSS
Exploits2
Ubuntu
Ubuntu
added 2021/07/19 7:41 a.m.139 views

LSN-0078-1: Kernel Live Patch Security Notice

Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could use this issue to execute arbitrary code.CVE-2021-3609...

7CVSS6.7AI score0.00431EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/07/16 9:18 a.m.154 views

USN-5011-1: Firefox vulnerabilities

Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, overlay text over another domain, or execute arbitrary code...

8.8CVSS7.7AI score0.03582EPSS
Exploits3
Ubuntu
Ubuntu
added 2021/07/15 5:53 p.m.160 views

USN-5010-1: QEMU vulnerabilities

Lei Sun discovered that QEMU incorrectly handled certain MMIO operations. An attacker inside the guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service. CVE-2020-15469 Wenxiang Qian discovered that QEMU incorrectly handled certain ATAPI commands. An attacker...

8.2CVSS6.8AI score0.00522EPSS
Exploits3
Ubuntu
Ubuntu
added 2021/07/15 5:23 p.m.156 views

USN-5009-1: libslirp vulnerabilities

Qiuhao Li discovered that libslirp incorrectly handled certain header data lengths. An attacker inside a guest could possibly use this issue to leak sensitive information from the host. This issue only affected Ubuntu 20.04 LTS and Ubuntu 20.10. CVE-2020-29129, CVE-2020-29130 It was discovered th...

4.3CVSS6.6AI score0.0183EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/07/13 12:1 p.m.146 views

USN-5006-2: PHP vulnerabilities

USN-5006-1 fixed several vulnerabilities in PHP. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that PHP incorrectly handled certain PHAR files. A remote attacker could possibly use this issue to cause PHP to...

7.5CVSS6.9AI score0.03179EPSS
Exploits4
Ubuntu
Ubuntu
added 2021/07/07 7:17 p.m.116 views

USN-5008-2: Avahi vulnerability

USN-5008-1 fixed a vulnerability in avahi. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Thomas Kremer discovered that Avahi incorrectly handled termination signals on the Unix socket. A local attacker could possibly use this...

5.5CVSS7.3AI score0.0045EPSS
Exploits0
Ubuntu
Ubuntu
added 2021/07/07 5:19 p.m.122 views

USN-5008-1: Avahi vulnerabilities

Thomas Kremer discovered that Avahi incorrectly handled termination signals on the Unix socket. A local attacker could possibly use this issue to cause Avahi to hang, resulting in a denial of service. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 20.10. CVE-2021-3468 It...

5.5CVSS6.7AI score0.0045EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/07/07 12:12 p.m.122 views

USN-5007-1: libuv vulnerability

Eric Sesterhenn discovered that libuv incorrectly handled certain strings. An attacker could possibly use this issue to access sensitive information or cause a crash...

5.3CVSS7.3AI score0.23132EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/07/07 12:11 p.m.161 views

USN-5006-1: PHP vulnerabilities

It was discovered that PHP incorrectly handled certain PHAR files. A remote attacker could possibly use this issue to cause PHP to crash, resulting in a denial of service, or possibly obtain sensitive information. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. CVE-2020-7068 It wa...

7.5CVSS6.9AI score0.03179EPSS
Exploits4
Ubuntu
Ubuntu
added 2021/07/05 1:12 p.m.125 views

USN-5005-1: DjVuLibre vulnerability

It was discovered that DjVuLibre incorrectly handled certain djvu files. An attacker could possibly use this issue to execute arbitrary code or cause a crash...

5.5CVSS6.2AI score0.01055EPSS
Exploits0
Ubuntu
Ubuntu
added 2021/06/30 2:27 p.m.116 views

USN-4905-2: X.Org X Server vulnerability

USN-4905-1 fixed a vulnerability in X.Org. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled certain lengths of XInput extension ChangeFeedbackControl requests. An attacker could us...

7.8CVSS7.8AI score0.0105EPSS
Exploits0
Ubuntu
Ubuntu
added 2021/06/29 7:18 p.m.63 views

USN-4866-1: Netty vulnerabilities

It was discovered that Netty incorrectly implements HTTP/2. An attacker could possibly use this issue to cause a denial of service. CVE-2019-9512, CVE-2019-9514, CVE-2019-9515, CVE-2019-9518...

7.8CVSS7.7AI score0.87806EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/06/25 8:1 p.m.147 views

USN-4997-2: Linux kernel (KVM) vulnerabilities

USN-4997-1 fixed vulnerabilities in the Linux kernel for Ubuntu 21.04. This update provides the corresponding updates for the Linux KVM kernel for Ubuntu 21.04. Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free...

8.8CVSS7.5AI score0.07604EPSS
Exploits9
Ubuntu
Ubuntu
added 2021/06/25 7:56 p.m.155 views

USN-5000-2: Linux kernel (KVM) vulnerabilities

USN-5000-1 fixed vulnerabilities in the Linux kernel for Ubuntu 20.04 LTS and the Linux HWE kernel for Ubuntu 18.04 LTS. This update provides the corresponding updates for the Linux KVM kernel for Ubuntu 20.04 LTS. Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of...

7.8CVSS7.5AI score0.07604EPSS
Exploits8
Ubuntu
Ubuntu
added 2021/06/25 2:44 p.m.154 views

USN-4995-2: Thunderbird vulnerabilities

USN-4995-1 fixed vulnerabilities in Thunderbird. This update provides the corresponding updates for Ubuntu 18.04 LTS. Original advisory details: Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an...

8.8CVSS8.1AI score0.01764EPSS
Exploits5
Ubuntu
Ubuntu
added 2021/06/25 2:38 a.m.209 views

USN-4998-1: Ceph vulnerabilities

It was discovered that in some situations Ceph logged passwords from the mgr module in clear text. An attacker could use this to expose sensitive information. CVE-2020-25678 Goutham Pacha Ravi, Jahson Babel, and John Garbutt discovered that user credentials in Ceph could be manipulated in certain...

7.2CVSS7AI score0.02449EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/06/24 3:4 p.m.1089 views

USN-5004-1: RabbitMQ vulnerabilities

It was discovered that RabbitMQ incorrectly handled certain inputs. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 ESM and Ubuntu 18.04 LTS. CVE-2019-11287 Jonathan Knudsen discovered RabbitMQ incorrectly handled certain inputs. An...

7.5CVSS5.7AI score0.04519EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/06/23 5:10 a.m.226 views

USN-5003-1: Linux kernel vulnerabilities

Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could use this issue to execute arbitrary code. CVE-2021-3609 It was discovered that the eBPF implementation in the Linux kernel...

7.8CVSS7.1AI score0.00482EPSS
Exploits2
Ubuntu
Ubuntu
added 2021/06/23 4:12 a.m.156 views

USN-5002-1: Linux kernel (HWE) vulnerability

Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could use this issue to execute arbitrary code...

7CVSS6.7AI score0.00431EPSS
Exploits1
Ubuntu
Ubuntu
added 2021/06/23 3:45 a.m.215 views

USN-5001-1: Linux kernel (OEM) vulnerabilities

Norbert Slusarek discovered a race condition in the CAN BCM networking protocol of the Linux kernel leading to multiple use-after-free vulnerabilities. A local attacker could use this issue to execute arbitrary code. CVE-2021-3609 Mathy Vanhoef discovered that the Linux kernel’s WiFi implementati...

8.8CVSS7.5AI score0.07604EPSS
Exploits9
Total number of security vulnerabilities10918