UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
CVE CVE-2023-49286 Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to an Incorrect Check of Function Return Value bug Squid is vulnerabl squid squid squid squid squid squid squid squid squid squid squid squid squid squid squid squid
CVE CVE-2023-49285 Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Buffer Overread bug Squid is vulnerable to a Denial of Service a squid squid squid squid squid squid squid squid squid squid squid squid squid squid squid squid
CVE CVE-2023-6918 A flaw was found in the libssh implements abstract layer for message digest (MD) operations implemented by different supported crypto backends. The r libssh libssh libssh libssh libssh libssh libssh libssh
CVE CVE-2023-6004 A flaw was found in libssh. By utilizing the ProxyCommand or ProxyJump feature, users can exploit unchecked hostname syntax on the client. This issue libssh libssh libssh libssh libssh libssh libssh libssh
CVE CVE-2024-0567 A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when v gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28
CVE CVE-2024-0553 A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from response times of ciphertex gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28 gnutls28
CVE CVE-2023-51764 Postfix through 3.8.4 allows SMTP smuggling unless configured with smtpd_data_restrictions=reject_unauth_pipelining and smtpd_discard_ehlo_keywords=c postfix postfix postfix postfix postfix postfix postfix postfix postfix postfix postfix postfix
Launchpad 2049337 CVE-2023-51764: SMTP smuggling postfix postfix postfix postfix postfix postfix postfix postfix postfix postfix postfix postfix
CVE CVE-2023-6531 A use-after-free flaw was found in the Linux Kernel due to a race prob ... linux-starfive linux-riscv linux-oem-6.5 linux-lowlatency-hwe-6.5 linux-hwe-6.5 linux-oracle-6.5 linux-starfive-6.5 linux-riscv-6.5 linux-starfive linux-riscv linux-laptop linux-starfive-6.5 linux-riscv-6.5 linux-lowlatency-hwe-6.5 linux-hwe-6.5 linux-oracle-6.5 linux-oem-6.5 linux-starfive linux-riscv linux-laptop linux-starfive-6.5 linux-riscv-6.5 linux-lowlatency-hwe-6.5 linux-hwe-6.5 linux-oracle-6.5 linux-oem-6.5 linux-aws-6.5
Launchpad 2033422 openssl: backport to jammy \ openssl openssl
Launchpad 1994165 CMS_final: do not ignore CMS_dataFinal result openssl openssl
Launchpad 2023545 [UBUNTU 22.04] openssl with ibmca engine configured dumps core when creating a new certificate openssl openssl
Launchpad 2042824 smbencrypt segfaults when run with any parameter freeradius freeradius freeradius freeradius
Launchpad 2049318 [SRU] free(): double free detected in tcache 2 iptables iptables iptables iptables
Launchpad 1978489 libvirt / cgroups v2: cannot boot instance with more than 16 CPUs nova nova
Launchpad 2042587 jammy's version breaks existing dhcp scripts with relay dnsmasq dnsmasq dnsmasq dnsmasq
Launchpad 2045570 dnsmasq crash when no servers in resolv.conf dnsmasq dnsmasq dnsmasq dnsmasq
Launchpad 1992939 ltrace produces no debug output at all, workaround is compiling with \ ltrace ltrace ltrace ltrace ltrace ltrace
Launchpad 2049327 `alsactl init` unable to initialze audio device on G700 alsa-ucm-conf alsa-ucm-conf alsa-ucm-conf alsa-ucm-conf
Launchpad 2047450 tail emits no output for sysfs files when using large page kernels coreutils coreutils coreutils coreutils



About   -   Send Feedback to @ubuntu_updates