These are the Ubuntu security notices that affect the current supported releases of Ubuntu. These notices are also posted to the ubuntu-security-announce mailing list (list archive). To report a security vulnerability in an Ubuntu package, please contact the Ubuntu Security Team. You may also be interested in learning about Ubuntu security policies. For more details on a specific CVE or source package, please see the Ubuntu CVE Tracker.

You can also view the latest notices by subscribing to the RSS or the Atom feeds.

Latest notices

USN-602-1: Firefox vulnerabilities

Flaws were discovered in Firefox which could lead to crashes during JavaScript garbage collection. If a user were tricked into opening a malicious web page, an attacker may be able to crash the browser or possibly execute arbitrary code with the user’s privileges. (CVE-2008-1380)

22 April 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-604-1: Gnumeric vulnerability

Thilo Pfennig and Morten Welinder discovered that the XLS spreadsheet handling code in Gnumeric did not correctly calculate needed memory sizes. If a user or automated system were tricked into loading a specially crafted XLS document, a remote attacker could execute arbitrary code with user privileges.

22 April 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-603-2: KOffice vulnerability

USN-603-1 fixed vulnerabilities in poppler. This update provides the corresponding updates for KWord, part of KOffice. Original advisory details: It was discovered that the poppler PDF library did not correctly handle certain malformed embedded fonts. If a user or an automated system were tricked into opening a malicious PDF, a remote…

17 April 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-603-1: poppler vulnerability

It was discovered that the poppler PDF library did not correctly handle certain malformed embedded fonts. If a user or an automated system were tricked into opening a malicious PDF, a remote attacker could execute arbitrary code with user privileges.

17 April 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-601-1: Squid vulnerability

It was discovered that Squid did not perform proper bounds checking when processing cache update replies. A remote authenticated user may be able to trigger an assertion error and cause a denial of service. This vulnerability is due to an incorrect upstream fix for CVE-2007-6239. (CVE-2008-1612)

14 April 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-600-1: rsync vulnerability

Sebastian Krahmer discovered that rsync could overflow when handling ACLs. An attacker could construct a malicious set of files that when processed by rsync could lead to arbitrary code execution or a crash.

11 April 2008 | ubuntu-7.10, ubuntu-7.04

USN-599-1: Ghostscript vulnerability

Chris Evans discovered that Ghostscript contained a buffer overflow in its color space handling code. If a user or automated system were tricked into opening a crafted Postscript file, an attacker could cause a denial of service or execute arbitrary code with privileges of the user invoking the program. (CVE-2008-0411)

9 April 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-598-1: CUPS vulnerabilities

It was discovered that the CUPS administration interface contained a heap- based overflow flaw. A local attacker, and a remote attacker if printer sharing is enabled, could send a malicious request and possibly execute arbitrary code as the non-root user in Ubuntu 6.06 LTS, 6.10, and 7.04. In Ubuntu 7.10, attackers would be isolated by the…

2 April 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-588-2: MySQL regression

USN-588-1 fixed vulnerabilities in MySQL. In fixing CVE-2007-2692 for Ubuntu 6.06, additional improvements were made to make privilege checks more restictive. As a result, an upstream bug was exposed which could cause operations on tables or views in a different database to fail. This update fixes the problem. We apologize for the…

2 April 2008 | ubuntu-6.06-lts

USN-597-1: OpenSSH vulnerability

Timo Juhani Lindfors discovered that the OpenSSH client, when port forwarding was requested, would listen on any available address family. A local attacker could exploit this flaw on systems with IPv6 enabled to hijack connections, including X11 forwards.

1 April 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts