Advisory: Ubuntu Essential and Critical Security Patch Updates - Page 379

Ubuntu: Postfix vulnerability

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

Sebastian Krahmer discovered that Postfix was not correctly handling mailbox ownership when dealing with Linux's implementation of hardlinking to symlinks. In certain mail spool configurations, a local attacker could exploit this to append data to arbitrary files as the root user. The default Ubuntu configuration was not vulnerable.

LinuxSecurity.com Team
Aug 19, 2008

Ubuntu: Devhelp, Epiphany, Midbrowser and Yelp update

A flaw was discovered in the browser engine. A variable could be made to overflow causing the browser to crash. If a user were tricked into opening a malicious web page, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. (CVE-2008-2785)

LinuxSecurity.com Team
Aug 04, 2008

Ubuntu: libxslt vulnerabilities

It was discovered that long transformation matches in libxslt could overflow. If an attacker were able to make an application linked against libxslt process malicious XSL style sheet input, they could execute arbitrary code with user privileges or cause the application to crash, leading to a denial of serivce. (CVE-2008-1767)

LinuxSecurity.com Team
Aug 01, 2008

Ubuntu: Python vulnerabilities

It was discovered that there were new integer overflows in the imageop module. If an attacker were able to trick a Python application into processing a specially crafted image, they could execute arbitrary code with user privileges. (CVE-2008-1679)

LinuxSecurity.com Team
Aug 01, 2008

Ubuntu: Firefox and xulrunner vulnerabilities USN-626-1

LinuxSecurity.com Team
Jul 28, 2008

Ubuntu: poppler vulnerability

Felipe Andres Manzano discovered that poppler did not correctly initialize certain page widgets. If a user were tricked into viewing a malicious PDF file, a remote attacker could exploit this to crash applications linked against poppler, leading to a denial of service.

LinuxSecurity.com Team
Jul 28, 2008

Ubuntu: Thunderbird vulnerabilities USN-629-1

A flaw was discovered in Thunderbird that allowed overwriting trusted objects via mozIJSSubScriptLoader.loadSubScript(). If a user had Javascript enabled and was tricked into opening a malicious web page, an attacker could execute arbitrary code with the privileges of the user invoking the program. (CVE-2008-2803)

LinuxSecurity.com Team
Jul 24, 2008

Ubuntu: PHP vulnerabilities USN-628-1

It was discovered that PHP did not properly check the length of the string parameter to the fnmatch function. An attacker could cause a denial of service in the PHP interpreter if a script passed untrusted input to the fnmatch function. (CVE-2007-4782)

LinuxSecurity.com Team
Jul 23, 2008

Ubuntu: Dnsmasq vulnerability

Dan Kaminsky discovered weaknesses in the DNS protocol as implemented by Dnsmasq. A remote attacker could exploit this to spoof DNS entries and poison DNS caches. Among other things, this could lead to misdirected email and web traffic.

LinuxSecurity.com Team
Jul 22, 2008

Ubuntu: Firefox vulnerabilities USN-623-1

LinuxSecurity.com Team
Jul 17, 2008

Ubuntu: PCRE vulnerability

Tavis Ormandy discovered that the PCRE library did not correctly handle certain in-pattern options. An attacker could cause applications linked against pcre3 to crash, leading to a denial of service.

LinuxSecurity.com Team
Jul 14, 2008

Ubuntu: Firefox vulnerabilities USN-619-1

Various flaws were discovered in the browser engine. By tricking a user into opening a malicious web page, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the program. (CVE-2008-2798, CVE-2008-2799)

LinuxSecurity.com Team
Jul 02, 2008

Ubuntu: Samba regression

LinuxSecurity.com Team
Jun 30, 2008

Ubuntu: Ruby vulnerabilities

Drew Yao discovered several vulnerabilities in Ruby which lead to integer overflows. If a user or automated system were tricked into running a malicious script, an attacker could cause a denial of service or execute arbitrary code with the privileges of the user invoking the program.

LinuxSecurity.com Team
Jun 26, 2008

Ubuntu: OpenSSL vulnerabilities

It was discovered that OpenSSL was vulnerable to a double-free when using TLS server extensions. A remote attacker could send a crafted packet and cause a denial of service via application crash in applications linked against OpenSSL. Ubuntu 8.04 LTS does not compile TLS server extensions by default. (CVE-2008-0891) It was discovered that OpenSSL could dereference a NULL pointer. If a user or automated system were tricked into connecting to a malicious server with particular cipher suites, a remote attacker could cause a denial of service via application crash. (CVE-2008-1672)

LinuxSecurity.com Team
Jun 26, 2008

Ubuntu: Linux kernel vulnerabilities USN-618-1

It was discovered that the ALSA /proc interface did not write the correct number of bytes when reporting memory allocations. A local attacker might be able to access sensitive kernel memory, leading to a loss of privacy. (CVE-2007-4571)

LinuxSecurity.com Team
Jun 19, 2008

Ubuntu: openssl-blacklist update

A weakness has been discovered in the random number generator used by OpenSSL on Debian and Ubuntu systems. As a result of this weakness, certain encryption keys are much more common than they should be, such that an attacker could guess the key through a brute-force attack given minimal knowledge of the system. This particularly affects the use of encryption keys in OpenSSH, OpenVPN and SSL certificates.

LinuxSecurity.com Team
Jun 18, 2008

Ubuntu: Samba vulnerabilities

Samba developers discovered that nmbd could be made to overrun a buffer during the processing of GETDC logon server requests. When samba is configured as a Primary or Backup Domain Controller, a remote attacker could send malicious logon requests and possibly cause a denial of service. (CVE-2007-4572) Alin Rad Pop of Secunia Research discovered that Samba did not properly perform bounds checking when parsing SMB replies. A remote attacker could send crafted SMB packets and execute arbitrary code. (CVE-2008-1105)

LinuxSecurity.com Team
Jun 17, 2008

Ubuntu: X.org vulnerabilities USN-616-1

It was discovered that the MIT-SHM extension of X.org did not correctly validate the location of memory during an image copy. An authenticated attacker could exploit this to read arbitrary memory locations within X, exposing sensitive information. (CVE-2008-1379)

LinuxSecurity.com Team
Jun 13, 2008

Ubuntu: OpenVPN regression

USN-612-3 addressed a weakness in OpenSSL certificate and key generation in OpenVPN by adding checks for vulnerable certificates and keys to OpenVPN. A regression was introduced in OpenVPN when using TLS with password protected certificates which caused OpenVPN to not start when used with applications such as NetworkManager.

LinuxSecurity.com Team
Jun 12, 2008

Ubuntu Essential and Critical Security Patch Updates - Page 379

Ubuntu: Postfix vulnerability

Ubuntu: Devhelp, Epiphany, Midbrowser and Yelp update

Ubuntu: libxslt vulnerabilities

Ubuntu: Python vulnerabilities

Ubuntu: Firefox and xulrunner vulnerabilities USN-626-1

Ubuntu: poppler vulnerability

Ubuntu: Thunderbird vulnerabilities USN-629-1

Ubuntu: PHP vulnerabilities USN-628-1

Ubuntu: Dnsmasq vulnerability

Ubuntu: Firefox vulnerabilities USN-623-1

Ubuntu: PCRE vulnerability

Ubuntu: Firefox vulnerabilities USN-619-1

Ubuntu: Samba regression

Ubuntu: Ruby vulnerabilities

Ubuntu: OpenSSL vulnerabilities

Ubuntu: Linux kernel vulnerabilities USN-618-1

Ubuntu: openssl-blacklist update

Ubuntu: Samba vulnerabilities

Ubuntu: X.org vulnerabilities USN-616-1

Ubuntu: OpenVPN regression

LinuxSecurity Poll

Which open source security automation tool do you use to protect against vulnerabilities?

Get the Latest News & Insights

News

Advisories

HOWTOs

Features

About Us

Powered By