Ubuntu security

USN-5440-1: PostgreSQL vulnerability Alexander Lakhin discovered that PostgreSQL incorrectly handled the security restricted operation sandbox when a privileged user is maintaining another user’s objects. An attacker having permission to create non-temp objects can use this issue to execute arbitrary commands as the superuser. Source: USN-5440-1: PostgreSQL vulnerability

USN-5439-1: AccountsService vulnerability Gunnar Hjalmarsson discovered that AccountsService incorrectly dropped privileges. A local user could possibly use this issue to cause AccountsService to crash or stop responding, resulting in a denial of service. (CVE-2022-1804) Source: USN-5439-1: AccountsService vulnerability

USN-5438-1: HTMLDOC vulnerability It was discovered that HTMLDOC did not properly manage memory under certain circumstances. If a user were tricked into opening a specially crafted HTML file, a remote attacker could possibly use this issue to cause HTMLDOC to crash, resulting in a denial of service, or possibly execute arbitrary code. Source: USN-5438-1: HTMLDOC vulnerability

USN-5437-1: libXfixes vulnerability Tobias Stoeckmann discovered that libXfixes incorrectly handled certain inputs. An attacker could possibly use this issue to cause a denial of service, or possibly execute arbitrary code. Source: USN-5437-1: libXfixes vulnerability

USN-5436-1: libXrender vulnerabilities Tobias Stoeckmann discovered that libXrender incorrectly handled certain responses. An attacker could possibly use this issue to cause a denial of service, or possibly execute arbitrary code. (CVE-2016-7949, CVE-2016-7950) Source: USN-5436-1: libXrender vulnerabilities