ubuntu-usn

Ubuntu security notices

No Image

USN-4719-1: ca-certificates update

2021-02-03 KENNETH 0

USN-4719-1: ca-certificates update The ca-certificates package contained outdated CA certificates. This update refreshes the included certificates to those contained in the 2.46 version of the Mozilla certificate authority bundle. Source: USN-4719-1: ca-certificates update

No Image

USN-4718-1: fastd vulnerability

2021-02-02 KENNETH 0

USN-4718-1: fastd vulnerability It was discovered that fastd incorrectly handled certain packets. An attacker could possibly use this issue to cause a denial of service. Source: USN-4718-1: fastd vulnerability

No Image

USN-4467-2: QEMU vulnerabilities

2021-02-02 KENNETH 0

USN-4467-2: QEMU vulnerabilities USN-4467-1 fixed several vulnerabilities in QEMU. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: It was discovered that the QEMU SD memory card implementation incorrectly handled certain memory operations. An attacker inside a guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service. (CVE-2020-13253) Ren Ding and Hanqing Zhao discovered that the QEMU ES1370 audio driver incorrectly handled certain invalid frame counts. An attacker inside a guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service. (CVE-2020-13361) Ren Ding and Hanqing Zhao discovered that the QEMU MegaRAID SAS SCSI driver incorrectly handled certain memory operations. An attacker inside a guest could possibly use this issue to cause QEMU to crash, resulting in a denial of service. (CVE-2020-13362) Alexander [ more… ]

No Image

USN-4717-1: Firefox vulnerabilities

2021-02-02 KENNETH 0

USN-4717-1: Firefox vulnerabilities Multiple security issues were discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, conduct clickjacking attacks, or execute arbitrary code. Source: USN-4717-1: Firefox vulnerabilities

No Image

USN-4715-2: Django vulnerability

2021-02-02 KENNETH 0

USN-4715-2: Django vulnerability USN-4715-1 fixed a vulnerability in Django. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: Wang Baohua discovered that Django incorrectly extracted archive files. A remote attacker could possibly use this issue to extract files outside of their expected location. Source: USN-4715-2: Django vulnerability