Ubuntu security

USN-5531-1: protobuf-c vulnerability Pietro Borrello discovered that protobuf-c contained an invalid arithmetic shift. This vulnerability allowed attackers to cause a denial of service (system crash) via unspecified vectors (CVE-2022-33070). It was discovered that protobuf-c contained an unsigned integer overflow. This vulnerability allowed attackers to cause a denial of service (system crash) via unspecified vectors. Todd Miller discovered that protobuf-c contained a possible NULL dereference. This could cause a vulnerability that allowed attackers to cause a denial of service (system crash) via unspecified vectors. Source: USN-5531-1: protobuf-c vulnerability

USN-5533-1: Vim vulnerability It was discovered that Vim incorrectly handled memory access. If a user were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause the corruption of sensitive information, a crash, or arbitrary code execution. Source: USN-5533-1: Vim vulnerability

USN-5534-1: ImageMagick vulnerabilities It was discovered that ImageMagick incorrectly handled certain values. If a user were tricked into processing a specially crafted image file, an attacker could possibly exploit this issue to cause a denial of service or other unspecified impact. (CVE-2022-32545, CVE-2022-32546) It was discovered that ImageMagick incorrectly handled memory under certain circumstances. If a user were tricked into processing a specially crafted image file, an attacker could possibly exploit this issue to cause a denial of service or other unspecified impact. (CVE-2022-32547) Source: USN-5534-1: ImageMagick vulnerabilities

USN-5532-1: Bottle vulnerability It was discovered that Bottle incorrectly handled errors during early request binding. An attacker could possibly use this issue to disclose sensitve information. (CVE-2022-31799) Source: USN-5532-1: Bottle vulnerability

USN-5530-1: PHP vulnerability It was discovered that PHP incorrectly handled certain memory operations when obtaining file information. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. Source: USN-5530-1: PHP vulnerability