Aggregator

USN-7554-3: Linux kernel (FIPS) vulnerabilities

1 week 3 days ago
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Block layer subsystem; - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2 file system; - JFS file system; - File systems infrastructure; - Sun RPC protocol; - USB sound devices; (CVE-2024-42301, CVE-2024-26966, CVE-2023-52458, CVE-2024-47701, CVE-2024-53155, CVE-2021-47211, CVE-2024-57850, CVE-2024-56551, CVE-2021-47353, CVE-2024-56596, CVE-2024-53168)

USN-7554-2: Linux kernel vulnerabilities

1 week 3 days ago
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Block layer subsystem; - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2 file system; - JFS file system; - File systems infrastructure; - Sun RPC protocol; - USB sound devices; (CVE-2024-42301, CVE-2024-53168, CVE-2024-57850, CVE-2024-47701, CVE-2021-47211, CVE-2023-52458, CVE-2024-56551, CVE-2024-26966, CVE-2024-53155, CVE-2024-56596, CVE-2021-47353)

USN-7554-1: Linux kernel vulnerabilities

1 week 3 days ago
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Block layer subsystem; - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2 file system; - JFS file system; - File systems infrastructure; - Sun RPC protocol; - USB sound devices; (CVE-2024-42301, CVE-2024-56596, CVE-2024-56551, CVE-2023-52458, CVE-2024-57850, CVE-2024-47701, CVE-2024-53168, CVE-2021-47211, CVE-2024-53155, CVE-2024-26966, CVE-2021-47353)

USN-7553-2: Linux kernel (FIPS) vulnerabilities

1 week 3 days ago
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2 file system; - JFS file system; - File systems infrastructure; - Sun RPC protocol; - USB sound devices; (CVE-2024-53155, CVE-2024-47701, CVE-2021-47211, CVE-2024-56596, CVE-2024-42301, CVE-2024-57850, CVE-2024-56551, CVE-2024-26966, CVE-2024-53168)

USN-7553-1: Linux kernel vulnerabilities

1 week 3 days ago
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2 file system; - JFS file system; - File systems infrastructure; - Sun RPC protocol; - USB sound devices; (CVE-2024-42301, CVE-2024-53168, CVE-2024-47701, CVE-2021-47211, CVE-2024-53155, CVE-2024-56596, CVE-2024-26966, CVE-2024-56551, CVE-2024-57850)

USN-7552-1: Wireshark vulnerabilities

1 week 3 days ago
It was discovered that Wireshark did not correctly handle recursion. If a user or system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. (CVE-2021-39929) Roman Donchenko discovered that Wireshark did not correctly handle parsing certain files. If a user or system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 20.04 LTS. (CVE-2021-4182) It was discovered that Wireshark did not correctly handle parsing certain files. If a user or system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. (CVE-2021-4185, CVE-2022-0581) It was discovered that Wireshark did not correctly handle parsing certain files. If a user or system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 20.04 LTS. (CVE-2021-4186) Sharon Brizinov discovered that Wireshark did not correctly handle parsing certain files. If a user or system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. (CVE-2022-0582, CVE-2022-0583, CVE-2022-0586) Sharon Brizinov discovered that Wireshark did not correctly handle parsing certain files. If a user or system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 20.04 LTS. (CVE-2022-0585) Jason Cohen discovered that Wireshark did not correctly handle parsing certain files. If a user or system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 22.04 LTS. (CVE-2022-3190)

USN-7551-1: libvpx vulnerability

1 week 4 days ago
It was discovered that libvpx did not properly manage memory. An attacker could possibly use this issue to cause applications using libvpx to crash, resulting in a denial of service, or possibly execute arbitrary code.

USN-7550-1: Linux kernel vulnerabilities

1 week 4 days ago
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Sun RPC protocol; (CVE-2024-56608, CVE-2024-56551, CVE-2024-53168)