Ubuntu Essential and Critical Security Patch Updates - Page 362
Find the information you need for your favorite open source distribution .
Find the information you need for your favorite open source distribution .
Drew Yao discovered several flaws in the way OpenEXR handled certain malformed EXR image files. If a user were tricked into opening a crafted EXR image file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program. (CVE-2009-1720, CVE-2009-1721) [More...]
Dan Kaminsky discovered OpenSSL would still accept certificates with MD2 hash signatures. As a result, an attacker could potentially create a malicious trusted certificate to impersonate another site. This update handles this issue by completely disabling MD2 for certificate validation. [More...]
It was discovered that Qt did not properly handle certificates with NULLcharacters in the Subject Alternative Name field of X.509 certificates. Anattacker could exploit this to perform a man in the middle attack to viewsensitive information or alter encrypted communications. (CVE-2009-2700) [More...]
Several flaws were discovered in the Firefox browser and JavaScriptengines. If a user were tricked into viewing a malicious website, a remoteattacker could cause a denial of service or possibly execute arbitrary codewith the privileges of the user invoking the program. (CVE-2009-3070,CVE-2009-3071, CVE-2009-3072, CVE-2009-3074, CVE-2009-3075) [More...]
Russell Senior discovered that the system authentication moduleselection mechanism for PAM did not safely handle an empty selection.If an administrator had specifically removed the default list of modulesor failed to chose a module when operating debconf in a very unlikelynon-default configuration, PAM would allow any authentication attempt, [More...]
USN-810-1 fixed vulnerabilities in NSS. Jozsef Kadlecsik noticed thatthe new libraries on amd64 did not correctly set stack memory flags,and caused applications using NSS (e.g. Firefox) to have an executablestack. This reduced the effectiveness of some defensive securityprotections. This update fixes the problem. [More...]
IvAin Arce, Pablo HernAin Jorge, Alejandro Pablo Rodriguez, MartAn Coco, Alberto SoliAto Testa and Pablo Annetta discovered that Dnsmasq did not properly validate its input when processing TFTP requests for files with long names. A remote attacker could cause a denial of service or execute arbitrary code with user privileges. Dnsmasq runs as the 'dnsmasq' user by [More...]
It was discovered that the XML HMAC signature system did not correctly check certain lengths. If an attacker sent a truncated HMAC, it could bypass authentication, leading to potential privilege escalation. (CVE-2009-0217) [More...]
It was discovered that libvorbis did not correctly handle certain malformed ogg files. If a user were tricked into opening a specially crafted ogg file with an application that uses libvorbis, an attacker could execute arbitrary code with the user's privileges. (CVE-2009-2663) [More...]
It was discovered that PHP did not properly handle certain malformed JPEG images when being parsed by the Exif module. A remote attacker could exploit this flaw and cause the PHP server to crash, resulting in a denial of service. [More...]
It was discovered that KDE-Graphics did not properly handle certain malformed SVG images. If a user were tricked into opening a specially crafted SVG image, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. [More...]
It was discovered that KDE-Libs did not properly handle certain malformed SVG images. If a user were tricked into opening a specially crafted SVG image, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. This issue only affected Ubuntu 9.04. (CVE-2009-0945) [More...]
Several flaws were discovered in the rendering engine of Thunderbird. IfJavascript were enabled, an attacker could exploit these flaws to crashThunderbird.
Federico Muttis discovered that Pidgin did not properly handle certain malformed messages in the MSN protocol handler. A remote attacker could send a specially crafted message and possibly execute arbitrary code with user privileges. [More...]
Moxie Marlinspike and Dan Kaminsky independently discovered that GnuTLS didnot properly handle certificates with NULL characters in the certificatename. An attacker could exploit this to perform a man in the middle attackto view sensitive information or alter encrypted communications.(CVE-2009-2730) [More...]
USN-802-1 fixed vulnerabilities in Apache. The upstream fix for CVE-2009-1891 introduced a regression that would cause Apache children to occasionally segfault when mod_deflate is used. This update fixes the problem. [More...]
Tavis Ormandy and Julien Tinnes discovered that Linux did not correctlyinitialize certain socket operation function pointers. A local attackercould exploit this to gain root privileges. By default, Ubuntu 8.04and later with a non-zero /proc/sys/vm/mmap_min_addr setting were notvulnerable. [More...]
Scott Cantor discovered that Curl did not correctly handle SSLcertificates with zero bytes in the Common Name. A remote attacker couldexploit this to perform a man in the middle attack to view sensitiveinformation or alter encrypted communications. [More...]
Moxie Marlinspike discovered that fetchmail did not properly handlecertificates with NULL characters in the certificate name. A remoteattacker could exploit this to perform a man in the middle attack toview sensitive information or alter encrypted communications. [More...]
It was discovered that libxml2 did not correctly handle root XML document element DTD definitions. If a user were tricked into processing a specially crafted XML document, a remote attacker could cause the application linked against libxml2 to crash, leading to a denial of service. (CVE-2009-2414) [More...]