[월:] 2022년 12월

USN-5762-1: GNU binutils vulnerability It was discovered that GNU binutils incorrectly handled certain COFF files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. Source: USN-5762-1: GNU binutils vulnerability

USN-5761-1: ca-certificates update Due to security concerns, the TrustCor certificate authority has been marked as distrusted in Mozilla’s root store. This update removes the TrustCor CA certificates from the ca-certificates package. Source: USN-5761-1: ca-certificates update

USN-5760-2: libxml2 vulnerabilities USN-5760-1 fixed vulnerabilities in libxml2. This update provides the corresponding updates for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that libxml2 incorrectly handled certain XML files. An attacker could possibly use this issue to expose sensitive information or cause a crash. (CVE-2022-40303) It was discovered that libxml2 incorrectly handled certain XML files. An attacker could possibly use this issue to execute arbitrary code. (CVE-2022-40304) Source: USN-5760-2: libxml2 vulnerabilities