Aggregator

USN-8122-1: PJSIP vulnerabilities

Ubuntu Security Advisories
3 days 16 hours ago
Youngsung Kim discovered that PJSIP did not properly parse numeric header fields in SIP messages. A remote attacker could use this issue to cause PJSIP to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 LTS. (CVE-2017-16872) Peter Koletzki discovered that PJSIP did not properly handle certain connection requests. A remote attacker could possibly use this issue to cause PJSIP to enter an unrecoverable state and reject further connections, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS. (CVE-2017-16875) Alfred Farrugia, Sandro Gauci, and Kevin Harwell discovered that PJSIP did not properly parse certain SDP messages. A remote attacker could possibly use this issue to cause PJSIP to crash, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS. (CVE-2018-1000098, CVE-2018-1000099) Lauri Vänskä discovered that PJSIP did not verify hostnames when reusing TLS connections. If a remote attacker were able to intercept communication, this flaw could possibly be exploited to view sensitive information. (CVE-2020-15260) It was discovered that PJSIP did not properly handle certain sequences of SDP messages. A remote attacker could possibly use this issue to cause PJSIP to crash, resulting in a denial of service. (CVE-2021-21375) It was discovered that the SSL socket implementation in PJSIP contained a race condition. A remote attacker could possibly use this issue to cause PJSIP to crash, resulting in a denial of service. This issue was only addressed in Ubuntu 18.04 LTS. (CVE-2021-32686) It was discovered that PJSIP did not properly parse certain STUN messages. A remote attacker could use this issue to cause PJSIP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2021-37706) Uriya Yavnieli discovered that PJSIP did not properly manage memory under certain conditions. A remote attacker could use this issue to cause PJSIP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2021-43299, CVE-2021-43300, CVE-2021-43301, CVE-2021-43302, CVE-2021-43303) It was discovered that PJSIP did not properly manage memory when processing ICE session credentials. A remote attacker could use this issue to cause PJSIP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2026-25994)

webkitgtk-2.52.0-1.fc42

Fedora Security Advisories
3 days 17 hours ago
FEDORA-2026-36594550b0 Packages in this update:
  • webkitgtk-2.52.0-1.fc42
Update description:

Update to 2.52.0:

  • Make text look like in other browsers by blending in linear color space.
  • Improved rendering performance by using a different tile size depending on whether GPU rendering is enabled or not.
  • Improved composition scheduling to avoid blocking waiting for tile painting.
  • Improved performance of accelerated 2D canvas by recording operations for batched replay.
  • Improved async scrolling when main thread is busy by avoiding locks and rendering the scrollbars from the scrolling thread.
  • Enabled dynamic MSAA for accelerated 2D canvas rendering.
  • Improved text rendering performance
  • Videos with BT2100-PQ colorspace are now tone-mapped to SDR, ensuring colours do not appear washed out.
  • Added support for the Audio Output Devices API.
  • Added API to handle WebXR permission requests.
  • Added API to query the immersive session status.
  • Added initial API for web extensions.

USN-8121-1: Linux kernel (AWS FIPS) vulnerability

Ubuntu Security Advisories
3 days 18 hours ago
Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module (LSM). An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information (kernel memory), local privilege escalation, or possibly escape a container. (LP: #2143853)

USN-8098-6: Linux kernel (FIPS) vulnerabilities

Ubuntu Security Advisories
3 days 20 hours ago
Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module (LSM). An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information (kernel memory), local privilege escalation, or possibly escape a container. (LP: #2143853) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - x86 architecture; - GPIO subsystem; - GPU drivers; - MMC subsystem; - BTRFS file system; - XFRM subsystem; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - SMC sockets; (CVE-2021-47599, CVE-2022-48875, CVE-2022-49072, CVE-2022-49267, CVE-2024-49927, CVE-2024-56640, CVE-2025-21780, CVE-2025-40215)

USN-8098-5: Linux kernel vulnerabilities

Ubuntu Security Advisories
3 days 20 hours ago
Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module (LSM). An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information (kernel memory), local privilege escalation, or possibly escape a container. (LP: #2143853) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - x86 architecture; - GPIO subsystem; - GPU drivers; - MMC subsystem; - BTRFS file system; - XFRM subsystem; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - SMC sockets; (CVE-2021-47599, CVE-2022-48875, CVE-2022-49072, CVE-2022-49267, CVE-2024-49927, CVE-2024-56640, CVE-2025-21780, CVE-2025-40215)