exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 26 - 50 of 9,845 RSS Feed

Operating System: Ubuntu

Ubuntu Security Notice USN-7001-1
Posted Sep 12, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7001-1 - Shang-Hung Wan discovered that Expat, contained within the xmltok library, did not properly handle certain function calls when a negative input length was provided. An attacker could use this issue to cause a denial of service or possibly execute arbitrary code. Shang-Hung Wan discovered that Expat, contained within the xmltok library, did properly handle the potential for an integer overflow on 32-bit platforms. An attacker could use this issue to cause a denial of service or possibly execute arbitrary code.

tags | advisory, denial of service, overflow, arbitrary
systems | linux, ubuntu
advisories | CVE-2024-45490, CVE-2024-45491
SHA-256 | dd777efeaab59422d2fe51b3d1cc0f03bc68451f5c70dd442a7b4f075550b945
Ubuntu Security Notice USN-7000-1
Posted Sep 12, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7000-1 - Shang-Hung Wan discovered that Expat did not properly handle certain function calls when a negative input length was provided. An attacker could use this issue to cause a denial of service or possibly execute arbitrary code. Shang-Hung Wan discovered that Expat did properly handle the potential for an integer overflow on 32-bit platforms. An attacker could use this issue to cause a denial of service or possibly execute arbitrary code.

tags | advisory, denial of service, overflow, arbitrary
systems | linux, ubuntu
advisories | CVE-2024-45490
SHA-256 | e207f4963e040f92737087661cdcc67616d5a449bd2f500e15737c6170147628
Ubuntu Security Notice USN-7002-1
Posted Sep 12, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7002-1 - It was discovered that setuptools was vulnerable to remote code execution. An attacker could possibly use this issue to execute arbitrary code.

tags | advisory, remote, arbitrary, code execution
systems | linux, ubuntu
advisories | CVE-2024-6345
SHA-256 | 54bafb3e8bf0072a6b96f1e84af61e2aabfd6f0f55f7346007be3c20de65531f
Ubuntu Security Notice USN-7003-2
Posted Sep 12, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7003-2 - It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2023-52803, CVE-2024-36978, CVE-2024-37078, CVE-2024-38619, CVE-2024-39469, CVE-2024-39487, CVE-2024-39495, CVE-2024-39501, CVE-2024-39502, CVE-2024-39509, CVE-2024-40902, CVE-2024-40905, CVE-2024-40934, CVE-2024-40942
SHA-256 | b9ccf0915602448265ab710de51d14e93875c6b9ca20f10baf002ab90a58470e
Ubuntu Security Notice USN-7003-1
Posted Sep 12, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7003-1 - It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2023-52803, CVE-2023-52887, CVE-2024-36978, CVE-2024-39469, CVE-2024-39487, CVE-2024-39499, CVE-2024-39501, CVE-2024-39502, CVE-2024-39503, CVE-2024-39509, CVE-2024-40902, CVE-2024-40904, CVE-2024-40905, CVE-2024-40912
SHA-256 | 7d5b0465fc8b365d164e7403ac3a399c1d198dc1157f8ad403f32d2ffbadf1a2
Ubuntu Security Notice USN-6997-2
Posted Sep 12, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6997-2 - USN-6997-1 fixed a vulnerability in LibTIFF. This update provides the corresponding updates for Ubuntu 14.04 LTS. It was discovered that LibTIFF incorrectly handled memory. An attacker could possibly use this issue to cause the application to crash, resulting in a denial of service.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2024-7006
SHA-256 | 96ae5f484bf5f362eb5537aaba9e0c81e0f8f62b5f143ef1ce8ddc21845eea5b
Ubuntu Security Notice USN-6999-1
Posted Sep 12, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6999-1 - Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. It was discovered that the JFS file system contained an out-of-bounds read vulnerability when printing xattr debug information. A local attacker could use this to cause a denial of service.

tags | advisory, denial of service, arbitrary, kernel, local
systems | linux, ubuntu
advisories | CVE-2022-48772, CVE-2024-23848, CVE-2024-32936, CVE-2024-34027, CVE-2024-35247, CVE-2024-36015, CVE-2024-36244, CVE-2024-36270, CVE-2024-36286, CVE-2024-36288, CVE-2024-36477, CVE-2024-36478, CVE-2024-36479, CVE-2024-36484
SHA-256 | f2f3af31e74d781983843453894ecb4650b3d835bf822cc772b1ad0341cc9292
Ubuntu Security Notice USN-6998-1
Posted Sep 11, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6998-1 - It was discovered that Unbound incorrectly handled string comparisons, which could lead to a NULL pointer dereference. An attacker could potentially use this issue to cause a denial of service. It was discovered that Unbound incorrectly handled memory in cfg_mark_ports, which could lead to a heap buffer overflow. A local attacker could potentially use this issue to cause a denial of service or execute arbitrary code.

tags | advisory, denial of service, overflow, arbitrary, local
systems | linux, ubuntu
advisories | CVE-2024-43167, CVE-2024-43168
SHA-256 | f9d7762439d9245eff0c00af6fb809547380b48c103aed24fe549548f865477c
Ubuntu Security Notice USN-6997-1
Posted Sep 10, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6997-1 - It was discovered that LibTIFF incorrectly handled memory. An attacker could possibly use this issue to cause the application to crash, resulting in a denial of service.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2024-7006
SHA-256 | d715a8865849f88063b88cbe93cb59c0248d315acbdb3eee8c15abca6d300389
Ubuntu Security Notice USN-6996-1
Posted Sep 10, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6996-1 - Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and arbitrary code execution.

tags | advisory, remote, web, denial of service, arbitrary, javascript, code execution, xss
systems | linux, ubuntu
advisories | CVE-2024-40776, CVE-2024-40789
SHA-256 | 495c021cebaed12775fb7591f330431d792303b4c0b48774c767ece1790af9e8
Ubuntu Security Notice USN-6841-2
Posted Sep 10, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6841-2 - USN-6841-1 fixed a vulnerability in PHP. This update provides the corresponding updates for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. It was discovered that PHP could early return in the filter_var function resulting in invalid user information being treated as valid user information. An attacker could possibly use this issue to expose raw user input information.

tags | advisory, php
systems | linux, ubuntu
advisories | CVE-2024-5458
SHA-256 | d170b8e7f8f92515ffeb2d3bd1921abc8a3d13ffd05345330e4edb30169de83a
Ubuntu Security Notice USN-6994-1
Posted Sep 10, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6994-1 - It was discovered that Netty did not properly sanitize its input parameters. A remote attacker could possibly use this issue to cause a crash. It was discovered that Netty incorrectly handled request cancellation. A remote attacker could possibly use this issue to cause Netty to consume resources, leading to a denial of service.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2023-34462, CVE-2023-44487
SHA-256 | 151f4791ce1bf18350da328db884812f982e73c362b6de11f386b30f3d2006ef
Ubuntu Security Notice USN-6995-1
Posted Sep 9, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6995-1 - Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass security restrictions, cross-site tracing, or execute arbitrary code. It was discovered that Thunderbird did not properly manage certain memory operations when processing graphics shared memory. An attacker could potentially exploit this issue to escape the sandbox.

tags | advisory, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2024-7519, CVE-2024-7522, CVE-2024-7525, CVE-2024-7526, CVE-2024-7527, CVE-2024-7529, CVE-2024-8381, CVE-2024-8382, CVE-2024-8384
SHA-256 | eab68a333f804e9e74b44016fbdb0398f12ab2987a9d060158306b72c60f40cc
Ubuntu Security Notice USN-6991-1
Posted Sep 6, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6991-1 - It was discovered that AIOHTTP did not properly restrict file access when the 'follow_symlinks' option was set to True. A remote attacker could possibly use this issue to access unauthorized files on the system.

tags | advisory, remote
systems | linux, ubuntu
advisories | CVE-2024-23334
SHA-256 | 5086a612b030dfb3ae7737ae3449c9df89010cef59afa6efb9fbaf45b83ffb72
Ubuntu Security Notice USN-6993-1
Posted Sep 5, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6993-1 - It was discovered that Vim incorrectly handled memory when closing a window, leading to a double-free vulnerability. If a user was tricked into opening a specially crafted file, an attacker could crash the application, leading to a denial of service, or possibly achieve code execution with user privileges. It was discovered that Vim incorrectly handled memory when adding a new file to an argument list, leading to a use-after-free. If a user was tricked into opening a specially crafted file, an attacker could crash the application, leading to a denial of service.

tags | advisory, denial of service, code execution
systems | linux, ubuntu
advisories | CVE-2024-41957, CVE-2024-43374
SHA-256 | afda8c50b2d703933dd67de51fd0060a06f710a6ac439afd52bea8bb4f9bbc7c
Ubuntu Security Notice USN-6992-1
Posted Sep 5, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6992-1 - Multiple security issues were discovered in Firefox. If a user were tricked into opening a specially crafted website, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information across domains, or execute arbitrary code. Nils Bars discovered that Firefox contained a type confusion vulnerability when performing certain property name lookups. An attacker could potentially exploit this issue to cause a denial of service, or execute arbitrary code.

tags | advisory, denial of service, arbitrary
systems | linux, ubuntu
advisories | CVE-2024-8381, CVE-2024-8383, CVE-2024-8384, CVE-2024-8385, CVE-2024-8386
SHA-256 | f877ee8cce524a71acb383e922589b335611b9a2a91b121ebf320339bdca2584
Ubuntu Security Notice USN-6990-1
Posted Sep 5, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6990-1 - Johannes Kuhn discovered that znc incorrectly handled user input under certain operations. An attacker could possibly use this issue to execute arbitrary code on a user's system if the user was tricked into joining a malicious server.

tags | advisory, arbitrary
systems | linux, ubuntu
advisories | CVE-2024-39844
SHA-256 | 2ff9ffcee81bb5bc9916e49051249af40af502f84776f8ed2b4abb3212c2cf98
Ubuntu Security Notice USN-6989-1
Posted Sep 5, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6989-1 - Dan Smith, Julia Kreger and Jay Faulkner discovered that in image processing for Ironic, a specially crafted image could be used by an authenticated user to exploit undesired behaviors in qemu-img, including possible unauthorized access to potentially sensitive data.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2024-44082
SHA-256 | c4b712ebf2b59c7d68e30d3767adfa9a7d46a5ac12b1d9e7f8bb28f06bdd19d0
Ubuntu Security Notice USN-6985-1
Posted Sep 4, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6985-1 - It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or execute code with the privileges of the user invoking the program.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2019-10131, CVE-2019-11597, CVE-2019-12976
SHA-256 | b2ed887bda1225e6a107abc79f6788f4ff09335f9bbfeb2491bad8367d72c41b
Ubuntu Security Notice USN-6988-1
Posted Sep 4, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6988-1 - It was discovered that Twisted incorrectly handled response order when processing multiple HTTP requests. A remote attacker could possibly use this issue to delay and manipulate responses. This issue only affected Ubuntu 24.04 LTS. It was discovered that Twisted did not properly sanitize certain input. An attacker could use this vulnerability to possibly execute an HTML injection leading to a cross-site scripting attack.

tags | advisory, remote, web, xss
systems | linux, ubuntu
advisories | CVE-2024-41671, CVE-2024-41810
SHA-256 | b3e9ccedfdbf38665257767f0dc668db4901ec80e4f37709d43bcb54502ddae9
Ubuntu Security Notice USN-6986-1
Posted Sep 4, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6986-1 - David Benjamin discovered that OpenSSL incorrectly handled certain X.509 certificates. An attacker could possible use this issue to cause a denial of service or expose sensitive information.

tags | advisory, denial of service
systems | linux, ubuntu
advisories | CVE-2024-6119
SHA-256 | 4e4ced71393d9b0e6bca8be03216a18e90e10465a4695a4677bf735d58d9bcc9
Ubuntu Security Notice USN-6981-2
Posted Sep 4, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6981-2 - USN-6981-1 fixed vulnerabilities in Drupal. This update provides the corresponding updates for Ubuntu 14.04 LTS. It was discovered that Drupal incorrectly sanitized uploaded filenames. A remote attacker could possibly use this issue to execute arbitrary code.

tags | advisory, remote, arbitrary, vulnerability
systems | linux, ubuntu
advisories | CVE-2020-13671
SHA-256 | e0c2bcfb7cd5f77e1fac909f4e05b9cd81d53faaf5f7d19ef0e52afe64fba15a
Ubuntu Security Notice USN-6987-1
Posted Sep 4, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6987-1 - It was discovered that Django incorrectly handled certain inputs. An attacker could possibly use this issue to cause a denial of service. It was discovered that Django incorrectly handled certain email sending failures. A remote attacker could possibly use this issue to enumerate user emails by issuing password reset requests and observing the outcomes.

tags | advisory, remote, denial of service
systems | linux, ubuntu
advisories | CVE-2024-45230, CVE-2024-45231
SHA-256 | f3f2768b2dc77ce49a90cc01a26c241df8af7757a71eacfd0692358e81f14191
Ubuntu Security Notice USN-6973-4
Posted Sep 3, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6973-4 - It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel, leading to a null pointer dereference vulnerability. A privileged local attacker could use this to possibly cause a denial of service. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system.

tags | advisory, denial of service, kernel, local
systems | linux, ubuntu
advisories | CVE-2021-46926, CVE-2024-24860, CVE-2024-26830, CVE-2024-26921, CVE-2024-39484
SHA-256 | 4006eea47a5441ab0ddfac9075db1654fe88940a7c48c7673d4074ffa6b8ff49
Ubuntu Security Notice USN-6984-1
Posted Sep 3, 2024
Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 6984-1 - It was discovered that WebOb incorrectly handled certain URLs. An attacker could possibly use this issue to control a redirect or forward to another URL.

tags | advisory
systems | linux, ubuntu
advisories | CVE-2024-42353
SHA-256 | d4ce9e5a8641bd321dc9895bca894ff07870e77f47bdfeb2a01766ff8638b040
Page 2 of 394
Back12345Next

File Archive:

September 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Sep 1st
    261 Files
  • 2
    Sep 2nd
    17 Files
  • 3
    Sep 3rd
    38 Files
  • 4
    Sep 4th
    52 Files
  • 5
    Sep 5th
    23 Files
  • 6
    Sep 6th
    27 Files
  • 7
    Sep 7th
    0 Files
  • 8
    Sep 8th
    1 Files
  • 9
    Sep 9th
    16 Files
  • 10
    Sep 10th
    38 Files
  • 11
    Sep 11th
    21 Files
  • 12
    Sep 12th
    40 Files
  • 13
    Sep 13th
    18 Files
  • 14
    Sep 14th
    0 Files
  • 15
    Sep 15th
    0 Files
  • 16
    Sep 16th
    21 Files
  • 17
    Sep 17th
    51 Files
  • 18
    Sep 18th
    23 Files
  • 19
    Sep 19th
    0 Files
  • 20
    Sep 20th
    0 Files
  • 21
    Sep 21st
    0 Files
  • 22
    Sep 22nd
    0 Files
  • 23
    Sep 23rd
    0 Files
  • 24
    Sep 24th
    0 Files
  • 25
    Sep 25th
    0 Files
  • 26
    Sep 26th
    0 Files
  • 27
    Sep 27th
    0 Files
  • 28
    Sep 28th
    0 Files
  • 29
    Sep 29th
    0 Files
  • 30
    Sep 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close