Ubuntu security

USN-6114-1: nth-check vulnerability Yeting Li discovered that nth-check incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. Source: USN-6114-1: nth-check vulnerability

USN-6113-1: Jhead vulnerability It was discovered that Jhead did not properly handle certain crafted images while processing the Exif markers. An attacker could possibly use this issue to crash Jhead, resulting in a denial of service. Source: USN-6113-1: Jhead vulnerability

USN-6112-1: Perl vulnerability It was discovered that Perl was not properly verifying TLS certificates when using CPAN together with HTTP::Tiny to download modules over HTTPS. If a remote attacker were able to intercept communications, this flaw could potentially be used to install altered modules. Source: USN-6112-1: Perl vulnerability

USN-6111-1: Flask vulnerability It was discovered that Flask incorrectly handled certain data responses. An attacker could possibly use this issue to expose sensitive information. Source: USN-6111-1: Flask vulnerability

USN-6005-2: Sudo vulnerabilities USN-6005-1 fixed vulnerabilities in Sudo. This update provides the corresponding updates for Ubuntu 16.04 LTS. Original advisory details: Matthieu Barjole and Victor Cutillas discovered that Sudo incorrectly escaped control characters in log messages and sudoreplay output. An attacker could possibly use these issues to inject terminal control characters that alter output when being viewed. Source: USN-6005-2: Sudo vulnerabilities