On October 10th, in a security notice Canonical published details about a QEMU vulnerability for its Ubuntu 12.04 LTS, Ubuntu 11.10, Ubuntu 11.04, Ubuntu 10.04 LTS, and Ubuntu 8.04 LTS operating systems.
According to Canonical, Bind could be made to crash if it received specially crafted network traffic. It was discovered that Bind incorrectly handled certain specific combinations of RDATA.
On October 26, in a security notice Canonical published details about an Exim vulnerability for its Ubuntu 12.10, Ubuntu 12.04 LTS, Ubuntu 11.10, Ubuntu 11.04, and Ubuntu 10.04 LTS operating systems.
According to Canonical, Exim could have been made to run programs if it received specially crafted network traffic.
It was discovered that Exim incorrectly handled DKIM DNS decoding.
Description:
===========================================================
Ubuntu Security Notice USN-863-1 December 03, 2009
qemu-kvm vulnerability
https://launchpad.net/bugs/458521
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 9.10
This advisory also applies
In a security notice, Canonical has published details about a Mesa vulnerability for its Ubuntu 12.04 LTS (Precise Pangolin) operating system.
According to Canonical, Mesa could have been made to crash or run programs, if it processed specially crafted data.
It was discovered that Mesa incorrectly handled certain arrays.
On November 5, Canonical published details about MySQL vulnerabilities for its Ubuntu 12.04 LTS, Ubuntu 11.10, and Ubuntu 10.04 LTS operating systems.
According to Canonical, libproxy could be made to crash or run programs, if it received specially crafted network traffic.
It was discovered that libproxy incorrectly handled certain PAC files.
On October 11th, in a security notice Canonical published details about a Quagga vulnerability for its Ubuntu 12.04 LTS, Ubuntu 11.10, Ubuntu 11.04, and Ubuntu 10.04 LTS operating systems. According to Canonical, Quagga could have been made to crash if it received specially crafted network traffic. Quagga then incorrectly handled certain malformed messages.
On April 2, Canonical published in a security notice details about a libxslt vulnerability for its Ubuntu 12.10, Ubuntu 12.04 LTS, Ubuntu 11.10, Ubuntu 11.04, Ubuntu 10.04 LTS, and Ubuntu 8.04 LTS operating systems. According to Canonical, applications using libxslt could be made to crash, if they processed a specially crafted file.
On December 6, Canonical published in a security notice details about a Bind vulnerability for its Ubuntu 12.10 (Quantal Quetzal) and Ubuntu 12.04 LTS (Precise Pangolin) operating systems.
According to Canonical, Bind could have been made to crash if it received specially-crafted network traffic.
It was discovered that Bind incorrectly handled certain crafted queries when DNS64 was enabled.
On September 27th, in a security notice Canonical published details about a libxml2 vulnerability for its Ubuntu 12.04 LTS, Ubuntu 11.10, Ubuntu 11.04, Ubuntu 10.04 LTS, and Ubuntu 8.04 LTS operating systems.
According to Canonical, applications using libxml2 could have been made to crash or run programs if users opened a specially crafted file.
Juri Aedla, the user who discovered the vulnerabil
Email this page
