-
Operating System: Ubuntu ≈ Packet Storm
Jul 25, 2024 | 13:25 pm
Ubuntu Security Notice 6913-1 - Filip Hejsek discovered that phpCAS was using HTTP headers to determine the service URL used to validate tickets. A remote attacker could possibly use this issue to gain access to a victim's account on a[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 25, 2024 | 13:24 pm
Ubuntu Security Notice 6915-1 - It was discovered that poppler incorrectly handled certain malformed PDF. An attacker could possibly use this issue to cause a denial of service.
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 24, 2024 | 13:40 pm
Ubuntu Security Notice 6912-1 - James Henstridge discovered that provd incorrectly handled environment variables. A local attacker could possibly use this issue to run arbitrary programs and escalate privileges.
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 24, 2024 | 13:37 pm
Ubuntu Security Notice 6906-1 - It was discovered that python-zipp did not properly handle the zip files with malformed names. An attacker could possibly use this issue to cause a denial of service.
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 24, 2024 | 13:35 pm
Ubuntu Security Notice 6530-2 - Seth Manesse and Paul Plasil discovered that HAProxy incorrectly handled URI components containing the hash character. A remote attacker could possibly use this issue to obtain sensitive information, or to bypass certain path_end rules.
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 24, 2024 | 13:34 pm
Ubuntu Security Notice 6907-1 - Joshua Rogers discovered that Squid did not properly handle multi-byte characters during Edge Side Includes processing. A remote attacker could possibly use this issue to cause a memory corruption error, leading to a denial of[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 24, 2024 | 13:33 pm
Ubuntu Security Notice 6911-1 - Arnaud Morin discovered that Nova incorrectly handled certain raw format images. An authenticated user could use this issue to access arbitrary files on the server, possibly exposing sensitive information.
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 24, 2024 | 13:32 pm
Ubuntu Security Notice 6908-1 - It was discovered that the Tomcat SSI printenv command echoed user provided data without escaping it. An attacker could possibly use this issue to perform an XSS attack. It was discovered that Tomcat incorrectly handled[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 24, 2024 | 13:26 pm
Ubuntu Security Notice 6909-1 - It was discovered that Bind incorrectly handled a flood of DNS messages over TCP. A remote attacker could possibly use this issue to cause Bind to become unstable, resulting in a denial of service. Toshifumi[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 23, 2024 | 13:55 pm
Ubuntu Security Notice 6905-1 - It was discovered that Rack incorrectly handled certain regular expressions. A remote attacker could possibly use this issue to cause Rack to consume resources, leading to a denial of service. It was discovered that Rack[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 23, 2024 | 13:54 pm
Ubuntu Security Notice 6904-1 - It was discovered that PyMongo incorrectly handled certain BSON. An attacker could possibly use this issue to read sensitive information or cause a crash.
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 23, 2024 | 12:36 pm
Ubuntu Security Notice 6898-4 - Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 23, 2024 | 12:34 pm
Ubuntu Security Notice 6893-3 - It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel when modifying certain settings values through debugfs. A privileged local attacker could use this to cause a denial of[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 23, 2024 | 12:21 pm
Ubuntu Security Notice 6896-5 - It was discovered that the ATA over Ethernet driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 22, 2024 | 11:55 am
Ubuntu Security Notice 6903-1 - Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 19, 2024 | 13:39 pm
Ubuntu Security Notice 6898-3 - Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 19, 2024 | 13:38 pm
Ubuntu Security Notice 6902-1 - It was discovered that the Apache HTTP Server incorrectly handled certain handlers configured via AddType. A remote attacker could possibly use this issue to obtain source code.
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 18, 2024 | 13:59 pm
Ubuntu Security Notice 6901-1 - It was discovered that stunnel did not properly validate client certificates when configured to use both the redirect and verifyChain options. A remote attacker could potentially use this issue to obtain sensitive information by accessing[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 17, 2024 | 17:21 pm
Ubuntu Security Notice 6896-3 - It was discovered that the ATA over Ethernet driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 17, 2024 | 17:20 pm
Ubuntu Security Notice 6900-1 - It was discovered that the ATA over Ethernet driver in the Linux kernel contained a race condition, leading to a use-after-free vulnerability. An attacker could use this to cause a denial of service or possibly[…]
Read more...
-
Operating System: Ubuntu ≈ Packet Storm
Jul 17, 2024 | 17:19 pm
Ubuntu Security Notice 6898-2 - Ziming Zhang discovered that the DRM driver for VMware Virtual GPU did not properly handle certain error conditions, leading to a NULL pointer dereference. A local attacker could possibly trigger this vulnerability to cause a[…]
Read more...