Showing 1 - 2 of 2

Files Date: 2021-06-21

Ubuntu Security Notice USN-4994-1: Posted Jun 21, 2021; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4994-1 - Marc Stern discovered that the Apache mod_proxy_http module incorrectly handled certain requests. A remote attacker could possibly use this issue to cause Apache to crash, resulting in a denial of service. This issue only affected Ubuntu 20.04 LTS, Ubuntu 20.10, and Ubuntu 21.04. Antonio Morales discovered that the Apache mod_auth_digest module incorrectly handled certain Digest nonces. A remote attacker could possibly use this issue to cause Apache to crash, resulting in a denial of service. Various other issues were also addressed.; tags | advisory, remote, denial of service; systems | linux, ubuntu; advisories | CVE-2020-13950, CVE-2020-35452, CVE-2021-26690, CVE-2021-26691, CVE-2021-30641; SHA-256 | a72dd26c36ff7d43b1a3ccbd95cb1d69d70e997aaac6217677f1cd3536ba61f6; Download | Favorite | View

Ubuntu Security Notice USN-4993-1: Posted Jun 21, 2021; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4993-1 - Kirin discovered that Dovecot incorrectly escaped kid and azp fields in JWT tokens. A local attacker could possibly use this issue to validate tokens using arbitrary keys. This issue only affected Ubuntu 20.10 and Ubuntu 21.04. Fabian Ising and Damian Poddebniak discovered that Dovecot incorrectly handled STARTTLS when using the SMTP submission service. A remote attacker could possibly use this issue to inject plaintext commands before STARTTLS negotiation. Various other issues were also addressed.; tags | advisory, remote, arbitrary, local; systems | linux, ubuntu; advisories | CVE-2021-29157, CVE-2021-33515; SHA-256 | 8070e4ff7c7ad7153e26bd392db955c947c13d14fa02d99a329da78fe2c25836; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days