USN-6596-1: Apache::Session::LDAP vulnerability ›
24 January 2024
Apache::Session::LDAP could be made to expose sensitive information through spoofing if it received invalid X.509 certificate.
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
24 January 2024
Apache::Session::LDAP could be made to expose sensitive information through spoofing if it received invalid X.509 certificate.
23 January 2024
PyCryptodome could be made to expose sensitive information.
23 January 2024
Several security issues were fixed in Squid.
22 January 2024
Several security issues were fixed in GnuTLS.
22 January 2024
Several security issues were fixed in X.Org X Server.
CVE-2023-6816 , CVE-2024-0408 , CVE-2024-0229 , and 3 others
22 January 2024
Several security issues were fixed in libssh.
22 January 2024
Postfix could allow bypass of email authentication if it received specially crafted network traffic.
18 January 2024
Several security issues were fixed in Xerces-C++.
18 January 2024
FileZilla could be made to expose sensitive information over the network.
17 January 2024
PAM could be made to stop responding if it opened a specially crafted file.