USN-6854-1: OpenSSL vulnerability ›
27 June 2024
OpenSSL could be made to consume resources and cause long delays if it processed certain input.
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
27 June 2024
OpenSSL could be made to consume resources and cause long delays if it processed certain input.
26 June 2024
SQLite could be made to crash if it received specially crafted input.
26 June 2024
Netplan could reveal secrets or execute commands with specially crafted configuration file.
26 June 2024
Several security issues were fixed in the Linux kernel.
CVE-2023-52599 , CVE-2023-52453 , CVE-2023-52462 , and 146 others
26 June 2024
Ruby could be made to crash or expose sensitive information login if it processed certain strings.
26 June 2024
Wget could be made to connect to a different host than expected.
26 June 2024
plasma-workspace would allow unintended access to the session manager.
26 June 2024
OpenVPN could allow unintended access to network services.
25 June 2024
Several security issues were fixed in Salt.
25 June 2024
Google Guest Agent and OS Config Agent could be made to crash if it open a specially crafted JSON.