Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2023-45733 | Hardware logic contains race conditions in some Intel(R) Processors may allow an authenticated user to potentially enable partial information disclos | intel-microcode intel-microcode intel-microcode intel-microcode intel-microcode intel-microcode intel-microcode intel-microcode |
| CVE | CVE-2024-34088 | In FRRouting (FRR) through 9.1, it is possible for the get_edge() function in ospf_te.c in the OSPF daemon to return a NULL pointer. In cases where c | frr frr frr frr frr frr frr frr frr frr frr frr |
| CVE | CVE-2024-31951 | In the Opaque LSA Extended Link parser in FRRouting (FRR) through 9.1, there can be a buffer overflow and daemon crash in ospf_te_parse_ext_link for | frr frr frr frr frr frr frr frr frr frr frr frr |
| CVE | CVE-2024-31950 | In FRRouting (FRR) through 9.1, there can be a buffer overflow and daemon crash in ospf_te_parse_ri for OSPF LSA packets during an attempt to read Se | frr frr frr frr frr frr frr frr frr frr frr frr |
| CVE | CVE-2024-31948 | In FRRouting (FRR) through 9.1, an attacker using a malformed Prefix SID attribute in a BGP UPDATE packet can cause the bgpd daemon to crash. | frr frr frr frr frr frr frr frr frr frr frr frr |
| CVE | CVE-2024-32465 | Git is a revision control system. The Git project recommends to avoid working in untrusted repositories, and instead to clone it first with `git clon | git git git git git git git git git git git git git git git git |
| CVE | CVE-2024-32021 | Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, when cloning a local source repositor | git git git git git git git git git git git git git git git git |
| CVE | CVE-2024-32020 | Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, local clones may end up hardlinking f | git git git git git git git git git git git git git git git git |
| CVE | CVE-2024-32004 | Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, an attacker can prepare a local repos | git git git git git git git git git git git git git git git git |
| CVE | CVE-2024-32002 | Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be c | git git git git git git git git git git git git |
| CVE | CVE-2024-28054 | Amavis before 2.12.3 and 2.13.x before 2.13.1, in part because of its use of MIME-tools, has an Interpretation Conflict (relative to some mail user a | amavisd-new amavisd-new amavisd-new amavisd-new amavisd-new amavisd-new amavisd-new amavisd-new amavisd-new amavisd-new amavisd-new amavisd-new amavisd-new amavisd-new amavisd-new amavisd-new |
| CVE | CVE-2024-3044 | Unchecked script execution in Graphic on-click binding in affected LibreOffice versions allows an attacker to create a document which without prompt | libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice |
| CVE | CVE-2024-27834 | The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, tvOS 17.5, Safari 17.5, watchOS 10.5, macOS Sonoma 14. | webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk |
| CVE | CVE-2024-34064 | Jinja is an extensible templating engine. The `xmlattr` filter in affected versions of Jinja accepts keys containing non-attribute characters. XML/HT | jinja2 jinja2 jinja2 jinja2 jinja2 jinja2 jinja2 jinja2 jinja2 jinja2 jinja2 jinja2 jinja2 jinja2 jinja2 jinja2 |
| CVE | CVE-2021-23385 | This affects all versions of package Flask-Security. When using the get_post_logout_redirect and get_post_login_redirect functions, it is possible to | flask-security flask-security flask-security flask-security |
| Launchpad | 2067261 | [BPO] libreoffice 7.6.7 for jammy | libreoffice libreoffice |
| Launchpad | 2064724 | Revert \ | linux-xilinx-zynqmp linux-xilinx-zynqmp linux-xilinx-zynqmp linux-xilinx-zynqmp |
| Launchpad | 2061954 | filezilla crashed with SIGABRT in start_thread() | libfilezilla libfilezilla |
| Launchpad | 2063200 | useradd --extrausers --groups tries to lock /etc/group | shadow |
| Launchpad | 2058052 | Enable Intel IDPF support on ARM64 | linux-gcp-5.15 linux-gcp-5.15 linux-gcp-6.5 linux-gcp-6.5 linux-gcp-6.5 linux-gcp-5.15 linux-gcp-6.5 linux-gcp-5.15 |
About
-
Send Feedback to @ubuntu_updates
