Ubuntu security

Ubuntu security notices

No Image

USN-5358-1: Linux kernel vulnerabilities

2022-03-31 KENNETH 0

USN-5358-1: Linux kernel vulnerabilities It was discovered that the network traffic control implementation in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-1055) It was discovered that the IPsec implementation in the Linux kernel did not properly allocate enough memory when performing ESP transformations, leading to a heap-based buffer overflow. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-27666) Source: USN-5358-1: Linux kernel vulnerabilities

No Image

USN-5357-1: Linux kernel vulnerability

2022-03-31 KENNETH 0

USN-5357-1: Linux kernel vulnerability It was discovered that the IPsec implementation in the Linux kernel did not properly allocate enough memory when performing ESP transformations, leading to a heap-based buffer overflow. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. Source: USN-5357-1: Linux kernel vulnerability

No Image

USN-5355-2: zlib vulnerability

2022-03-31 KENNETH 0

USN-5355-2: zlib vulnerability USN-5355-1 fixed a vulnerability in zlib. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Danilo Ramos discovered that zlib incorrectly handled memory when performing certain deflating operations. An attacker could use this issue to cause zlib to crash, resulting in a denial of service, or possibly execute arbitrary code. Source: USN-5355-2: zlib vulnerability

No Image

USN-5356-1: DOSBox vulnerabilities

2022-03-31 KENNETH 0

USN-5356-1: DOSBox vulnerabilities Alexandre Bartel discovered that DOSBox incorrectly handled long lines in certain files. An attacker could possibly use this issue to execute arbitrary code. (CVE-2019-7165) Alexandre Bartel discovered that DOSBox incorrectly performed access control over certain directories. An attacker could possibly use this issue to execute arbitrary code. (CVE-2019-12594) Source: USN-5356-1: DOSBox vulnerabilities

No Image

USN-5355-1: zlib vulnerability

2022-03-30 KENNETH 0

USN-5355-1: zlib vulnerability Danilo Ramos discovered that zlib incorrectly handled memory when performing certain deflating operations. An attacker could use this issue to cause zlib to crash, resulting in a denial of service, or possibly execute arbitrary code. Source: USN-5355-1: zlib vulnerability