Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2024-39894 | OpenSSH 9.5 through 9.7 before 9.8 sometimes allows timing attacks against echo-off password entry (e.g., for su and Sudo) because of an ObscureKeyst | openssh openssh openssh openssh |
| Launchpad | 2062082 | Nvidia drivers fail to install libnvidia-egl-wayland1, resulting in Zink being used | nvidia-graphics-drivers-535-server nvidia-graphics-drivers-535-server nvidia-graphics-drivers-535-server nvidia-graphics-drivers-535-server nvidia-graphics-drivers-550 nvidia-graphics-drivers-550 |
| Launchpad | 2063827 | Gnome apps segfault in Nvidia (535) Wayland sessions on Noble, but 550 works | nvidia-graphics-drivers-535-server nvidia-graphics-drivers-535-server nvidia-graphics-drivers-535-server nvidia-graphics-drivers-535-server |
| CVE | CVE-2024-24785 | If errors returned from MarshalJSON methods contain user controlled data, they may be used to break the contextual auto-escaping behavior of the html | golang-1.21 golang-1.21 golang-1.21 golang-1.21 |
| CVE | CVE-2024-24784 | The ParseAddressList function incorrectly handles comments (text within parentheses) within display names. Since this is a misalignment with conformi | golang-1.21 golang-1.21 golang-1.21 golang-1.21 |
| CVE | CVE-2024-24783 | Verifying a certificate chain which contains a certificate with an unknown public key algorithm will cause Certificate.Verify to panic. This affects | golang-1.21 golang-1.21 golang-1.21 golang-1.21 |
| CVE | CVE-2023-45290 | When parsing a multipart form (either explicitly with Request.ParseMultipartForm or implicitly with Request.FormValue, Request.PostFormValue, or Requ | golang-1.21 golang-1.21 golang-1.21 golang-1.21 |
| CVE | CVE-2023-45289 | When following an HTTP redirect to a domain which is not a subdomain match or exact match of the initial domain, an http.Client does not forward sens | golang-1.21 golang-1.21 golang-1.21 golang-1.21 |
| CVE | CVE-2023-45288 | An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining | golang-1.21 golang-1.21 golang-1.21 golang-1.21 |
| CVE | CVE-2024-24788 | A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an infinite loop. | golang-1.22 golang-1.22 golang-1.22 golang-1.22 |
| CVE | CVE-2024-24790 | The various Is methods (IsPrivate, IsLoopback, etc) did not work as expected for IPv4-mapped IPv6 addresses, returning false for addresses which woul | golang-1.21 golang-1.22 golang-1.22 golang-1.21 golang-1.21 golang-1.21 golang-1.22 golang-1.22 golang-1.21 golang-1.21 |
| CVE | CVE-2024-24789 | The archive/zip package's handling of certain types of invalid zip files differs from the behavior of most zip implementations. This misalignment cou | golang-1.21 golang-1.22 golang-1.22 golang-1.21 golang-1.21 golang-1.21 golang-1.22 golang-1.22 golang-1.21 golang-1.21 |
| CVE | CVE-2021-38371 | The STARTTLS feature in Exim through 4.94.2 allows response injection (buffering) during MTA SMTP sending. | exim4 exim4 exim4 exim4 |
| CVE | CVE-2022-42252 | If Apache Tomcat 8.5.0 to 8.5.82, 9.0.0-M1 to 9.0.67, 10.0.0-M1 to 10.0.26 or 10.1.0-M1 to 10.1.0 was configured to ignore invalid HTTP headers via s | tomcat9 tomcat9 |
| CVE | CVE-2024-38475 | Improper escaping of output in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to map URLs to filesystem locations that are p | apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 |
| CVE | CVE-2024-38474 | Substitution encoding issue in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows attacker to execute scripts in directories permitted by th | apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 |
| CVE | CVE-2024-36387 | Serving WebSocket protocol upgrades over a HTTP/2 connection could result in a Null Pointer dereference, leading to a crash of the server process, de | apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 |
| CVE | CVE-2024-39884 | A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based configuration of handlers. "AddType" and si | apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 |
| CVE | CVE-2024-39573 | Potential SSRF in mod_rewrite in Apache HTTP Server 2.4.59 and earlier allows an attacker to cause unsafe RewriteRules to unexpectedly setup URL's to | apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 |
| CVE | CVE-2024-38477 | null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker to crash the server via a malicious request. Users | apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 apache2 |
About
-
Send Feedback to @ubuntu_updates
