Ubuntu security notices
USN-4685-1: OpenJPEG vulnerabilities It was discovered that OpenJPEG incorrectly handled certain image data. An attacker could use this issue to cause OpenJPEG to crash, leading to a denial of service, or possibly execute arbitrary code. Source: USN-4685-1: OpenJPEG vulnerabilities
USN-4684-1: EDK II vulnerabilities Laszlo Ersek discovered that EDK II incorrectly validated certain signed images. An attacker could possibly use this issue with a specially crafted image to cause EDK II to hang, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. (CVE-2019-14562) It was discovered that EDK II incorrectly parsed signed PKCS #7 data. An attacker could use this issue to cause EDK II to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2019-14584) Source: USN-4684-1: EDK II vulnerabilities
USN-4683-1: Linux kernel (OEM) vulnerability Minh Yuan discovered that the framebuffer console driver in the Linux kernel did not properly handle fonts in some conditions. A local attacker could use this to cause a denial of service (system crash) or possibly expose sensitive information (kernel memory). Source: USN-4683-1: Linux kernel (OEM) vulnerability
USN-4677-2: p11-kit vulnerability USN-4677-1 fixed a vulnerability in p11-kit. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: David Cook discovered that p11-kit incorrectly handled certain memory operations. An attacker could use this issue to cause p11-kit to crash, resulting in a denial of service, or possibly execute arbitrary code. Source: USN-4677-2: p11-kit vulnerability
USN-4682-1: WavPack vulnerability It was discovered that WavPack incorrectly handled certain WAV files. An attacker could possibly use this issue to execute arbitrary code or cause a crash. Source: USN-4682-1: WavPack vulnerability
Copyright © 2024 | WordPress Theme by MH Themes
