Ubuntu security

Ubuntu security notices

No Image

USN-5379-1: klibc vulnerabilities

2022-04-18 KENNETH 0

USN-5379-1: klibc vulnerabilities It was discovered that klibc did not properly perform some mathematical operations, leading to an integer overflow. An attacker could possibly use this issue to cause a crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2021-31870) It was discovered that klibc did not properly handled some memory allocations on 64 bit systems. An attacker could possibly use this issue to cause a crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2021-31871) It was discovered that klibc did not properly handled some file sizes values on 32 bit systems. An attacker could possibly use this issue to cause a crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2021-31872) It was discovered that klibc did not properly handled some memory allocations. An attacker could possibly use this [ more… ]

No Image

USN-5378-4: Gzip vulnerability

2022-04-14 KENNETH 0

USN-5378-4: Gzip vulnerability USN-5378-1 fixed a vulnerability in Gzip. This update provides the corresponding update for Ubuntu 14.04 ESM and 16.04 ESM. Original advisory details: Cleemy Desu Wayo discovered that Gzip incorrectly handled certain filenames. If a user or automated system were tricked into performing zgrep operations with specially crafted filenames, a remote attacker could overwrite arbitrary files. Source: USN-5378-4: Gzip vulnerability

No Image

USN-5378-3: XZ Utils vulnerability

2022-04-13 KENNETH 0

USN-5378-3: XZ Utils vulnerability USN-5378-2 fixed a vulnerability in XZ Utils. This update provides the corresponding update for Ubuntu 14.04 ESM and 16.04 ESM. Original advisory details: Cleemy Desu Wayo discovered that Gzip incorrectly handled certain filenames. If a user or automated system were tricked into performing zgrep operations with specially crafted filenames, a remote attacker could overwrite arbitrary files. Source: USN-5378-3: XZ Utils vulnerability

No Image

USN-5378-2: XZ Utils vulnerability

2022-04-13 KENNETH 0

USN-5378-2: XZ Utils vulnerability Cleemy Desu Wayo discovered that XZ Utils incorrectly handled certain filenames. If a user or automated system were tricked into performing xzgrep operations with specially crafted filenames, a remote attacker could overwrite arbitrary files. Source: USN-5378-2: XZ Utils vulnerability

No Image

USN-5378-1: Gzip vulnerability

2022-04-13 KENNETH 0

USN-5378-1: Gzip vulnerability Cleemy Desu Wayo discovered that Gzip incorrectly handled certain filenames. If a user or automated system were tricked into performing zgrep operations with specially crafted filenames, a remote attacker could overwrite arbitrary files. Source: USN-5378-1: Gzip vulnerability