These are the Ubuntu security notices that affect the current supported releases of Ubuntu. These notices are also posted to the ubuntu-security-announce mailing list (list archive). To report a security vulnerability in an Ubuntu package, please contact the Ubuntu Security Team. You may also be interested in learning about Ubuntu security policies. For more details on a specific CVE or source package, please see the Ubuntu CVE Tracker.

You can also view the latest notices by subscribing to the RSS or the Atom feeds.

Latest notices

USN-596-1: Ruby vulnerabilities

Chris Clark discovered that Ruby’s HTTPS module did not check for commonName mismatches early enough during SSL negotiation. If a remote attacker were able to perform man-in-the-middle attacks, this flaw could be exploited to view sensitive information in HTTPS requests coming from Ruby applications. (CVE-2007-5162) It was discovered that Ruby’s…

26 March 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-595-1: SDL_image vulnerabilities

Michael Skladnikiewicz discovered that SDL_image did not correctly load GIF images. If a user or automated system were tricked into processing a specially crafted GIF, a remote attacker could execute arbitrary code or cause a crash, leading to a denial of service. (CVE-2007-6697) David Raulo discovered that SDL_image did not correctly load ILBM…

26 March 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-594-1: libnet-dns-perl vulnerability

It was discovered that Net::DNS did not correctly validate the size of DNS replies. A remote attacker could send a specially crafted DNS response and cause applications using Net::DNS to abort, leading to a denial of service.

26 March 2008 | ubuntu-6.10, ubuntu-6.06-lts

USN-593-1: Dovecot vulnerabilities

It was discovered that the default configuration of dovecot could allow access to any email files with group “mail” without verifying that a user had valid rights. An attacker able to create symlinks in their mail directory could exploit this to read or delete another user’s email. (CVE-2008-1199) By default, dovecot passed special characters to…

26 March 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-592-1: Firefox vulnerabilities

Alexey Proskuryakov, Yosuke Hasegawa and Simon Montagu discovered flaws in Firefox’s character encoding handling. If a user were tricked into opening a malicious web page, an attacker could perform cross-site scripting attacks. (CVE-2008-0416) Various flaws were discovered in the JavaScript engine. By tricking a user into opening a malicious web…

26 March 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-591-1: libicu vulnerabilities

Will Drewry discovered that libicu did not properly handle ‘\0’ when processing regular expressions. If an application linked against libicu processed a crafted regular expression, an attacker could execute arbitrary code with privileges of the user invoking the program. (CVE-2007-4770) Will Drewry discovered that libicu did not properly limit…

24 March 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-590-1: bzip2 vulnerability

It was discovered that bzip2 did not correctly handle certain malformed archives. If a user or automated system were tricked into processing a specially crafted bzip2 archive, applications linked against libbz2 could be made to crash, possibly leading to a denial of service.

24 March 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-589-1: unzip vulnerability

Tavis Ormandy discovered that unzip did not correctly clean up pointers. If a user or automated service was tricked into processing a specially crafted ZIP archive, a remote attacker could execute arbitrary code with user privileges.

20 March 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-588-1: MySQL vulnerabilities

Masaaki Hirose discovered that MySQL could be made to dereference a NULL pointer. An authenticated user could cause a denial of service (application crash) via an EXPLAIN SELECT FROM on the INFORMATION_SCHEMA table. This issue only affects Ubuntu 6.06 and 6.10. (CVE-2006-7232) Alexander Nozdrin discovered that MySQL did not restore database…

19 March 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts

USN-587-1: Kerberos vulnerabilities

It was discovered that krb5 did not correctly handle certain krb4 requests. An unauthenticated remote attacker could exploit this flaw by sending a specially crafted traffic, which could expose sensitive information, cause a crash, or execute arbitrary code. (CVE-2008-0062, CVE-2008-0063) A flaw was discovered in the kadmind service’s handling…

19 March 2008 | ubuntu-7.10, ubuntu-7.04, ubuntu-6.10, ubuntu-6.06-lts