SECURITY

USN-4041-1: Linux kernel update linux, linux-aws, linux-aws-hwe, linux-azure, linux-gcp, linux-gke-4.15, linux-hwe, linux-kvm, linux-oem, linux-oracle, linux-raspi2, linux-snapdragon update A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 19.04 Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Summary Several security issues were fixed in the Linux kernel. Software Description linux – Linux kernel linux-aws – Linux kernel for Amazon Web Services (AWS) systems linux-azure – Linux kernel for Microsoft Azure Cloud systems linux-gcp – Linux kernel for Google Cloud Platform (GCP) systems linux-kvm – Linux kernel for cloud environments linux-raspi2 – Linux kernel for Raspberry Pi 2 linux-snapdragon – Linux kernel for Snapdragon processors linux-gke-4.15 – Linux kernel for Google Container Engine (GKE) systems linux-hwe – Linux hardware enablement (HWE) kernel linux-oem – Linux kernel for OEM processors linux-oracle – Linux kernel for Oracle Cloud systems linux-aws-hwe – Linux [ more… ]

USN-4042-1: poppler vulnerabilities poppler vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 19.04 Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Summary Several security issues were fixed in poppler. Software Description poppler – PDF rendering library Details It was discovered that poppler incorrectly handled certain files. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service, or possibly execute arbitrary code Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 19.04 libpoppler85 – 0.74.0-0ubuntu1.2 poppler-utils – 0.74.0-0ubuntu1.2 Ubuntu 18.10 libpoppler79 – 0.68.0-0ubuntu1.7 poppler-utils – 0.68.0-0ubuntu1.7 Ubuntu 18.04 LTS libpoppler73 – 0.62.0-2ubuntu2.9 poppler-utils – 0.62.0-2ubuntu2.9 Ubuntu 16.04 LTS libpoppler58 – 0.41.0-0ubuntu1.14 poppler-utils – 0.41.0-0ubuntu1.14 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. In general, a [ more… ]

USN-4039-1: CImg vulnerabilities CImg vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 18.10 Ubuntu 18.04 LTS Summary Several security issues were fixed in CImg. Software Description cimg – C++ template image processing toolkit Details It was discovered that allocation failures could occur in CImg when loading crafted bmp images. An attacker could possibly use this issue to cause a denial of service. (CVE-2018-7587) It was discovered that a heap-based buffer over-read existed in CImg when loading crafted bmp images. An attacker could possibly use this issue to execute arbitrary code. (CVE-2018-7588) It was discovered that a double free existed in CImg when loading crafted bmp images. An attacker could possibly use this issue to execute arbitrary code. (CVE-2018-7589) Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu [ more… ]

USN-4040-2: Expat vulnerability expat vulnerability A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 14.04 ESM Ubuntu 12.04 ESM Summary Expat could be made to consume a high amount of RAM and CPU resources if it received a specially crafted XML file. Software Description expat – XML parsing C library Details USN-4040-1 fixed a vulnerability in expat. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that Expat incorrectly handled certain XML files. An attacker could possibly use this issue to cause a denial of service. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 ESM lib64expat1 – 2.1.0-4ubuntu1.4+esm1 libexpat1 – 2.1.0-4ubuntu1.4+esm1 Ubuntu 12.04 ESM lib64expat1 – 2.0.1-7.2ubuntu1.6 libexpat1 – 2.0.1-7.2ubuntu1.6 To update your system, please follow [ more… ]