USN-7067-1: HAProxy vulnerability ›
14 October 2024
HAProxy could be made to crash if it received specially crafted network traffic.
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
14 October 2024
HAProxy could be made to crash if it received specially crafted network traffic.
14 October 2024
Thunderbird could be made to crash or run programs if it opened a specially crafted file.
14 October 2024
Firefox could be made to run programs as your login if it opened a malicious website.
11 October 2024
Ubuntu Advantage Desktop Daemon could be made to expose sensitive information.
11 October 2024
Several security issues were fixed in the Linux kernel.
CVE-2024-42160 , CVE-2024-42154 , CVE-2024-41009 , and 3 others
10 October 2024
Several security issues were fixed in Go.
CVE-2023-29405 , CVE-2023-29406 , CVE-2024-24785 , and 8 others
10 October 2024
libgsf could be made to run programs as your login if it opened a specially crafted file.
10 October 2024
Several security issues were fixed in the Linux kernel.
CVE-2024-42160 , CVE-2024-26787 , CVE-2024-38570 , and 7 others
10 October 2024
Several security issues were fixed in EDK II.
CVE-2021-38578 , CVE-2021-28210 , CVE-2019-0161 , and 3 others
9 October 2024
oath-toolkit could be made overwrite files as the administrator.