USN-6369-2: libwebp vulnerability ›
28 September 2023
libwebp could be made to crash or run programs if it opened a specially crafted file.
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
28 September 2023
libwebp could be made to crash or run programs if it opened a specially crafted file.
27 September 2023
Python could be made to expose sensitive information.
27 September 2023
Puma could allow HTTP Request Smuggling attacks.
27 September 2023
Several security issues were fixed in ReadyMedia.
26 September 2023
Several security issues were fixed in the Linux kernel.
26 September 2023
Several security issues were fixed in the Linux kernel.
CVE-2023-2002 , CVE-2023-35828 , CVE-2023-3268 , and 11 others
26 September 2023
Several security issues were fixed in the Linux kernel.
CVE-2022-27672 , CVE-2022-40982 , CVE-2023-3863 , and 3 others
26 September 2023
CUPS could be made to expose sensitive information.
25 September 2023
Open VM Tools could allow unintended access to network services.
25 September 2023
AccountsService could be made to crash or run programs if it received specially crafted messages.