On December 12, Canonical published in a security notice details about an APT vulnerability for its Ubuntu 12.10 (Quantal Quetzal), Ubuntu 12.04 (Precise Pangolin), and Ubuntu 11.10 (Oneiric Ocelot) operating systems.
According to Canonical, APT could have made to expose sensitive information.
It was discovered that APT set inappropriate permissions on the term.log file.
On December 6, Canonical published in a security notice details about a libxml2 vulnerability for its Ubuntu 12.10 (Quantal Quetzal), Ubuntu 12.04 LTS (Precise Pangolin), Ubuntu 11.10 (Oneiric Ocelot), Ubuntu 10.04 LTS (Lucid Lynx), and Ubuntu 8.04 LTS (Hardy Heron) operating systems.
On February 27, Canonical published in a security notice details about a GnuTLS vulnerability for its Ubuntu 12.10, Ubuntu 12.04 LTS, Ubuntu 11.10, Ubuntu 10.04 LTS, and Ubuntu 8.04 LTS operating systems. According to Canonical, GnuTLS could be made to expose sensitive information over the network.
On March 14, Canonical published in a security notice details about a NSS vulnerability for its Ubuntu 12.10, Ubuntu 12.04 LTS, Ubuntu 11.10, and Ubuntu 10.04 LTS operating systems. According to Canonical, NSS could be made to expose sensitive information over the network.
On October 26, in a security notice Canonical published details about an Exim vulnerability for its Ubuntu 12.10, Ubuntu 12.04 LTS, Ubuntu 11.10, Ubuntu 11.04, and Ubuntu 10.04 LTS operating systems.
According to Canonical, Exim could have been made to run programs if it received specially crafted network traffic.
It was discovered that Exim incorrectly handled DKIM DNS decoding.
On December 5, Canonical published in a security notice details about a CUPS vulnerability for its Ubuntu 12.04 LTS (Precise Pangolin), Ubuntu 11.10 (Oneiric Ocelot), Ubuntu 10.04 LTS (Lucid Lynx), and Ubuntu 8.04 LTS (Hardy Heron) operating systems. According to Canonical, programs that used LibTIFF could have been made to crash or to run programs, if they opened a specially-crafted file.
On December 6, Canonical published in a security notice details about a Bind vulnerability for its Ubuntu 12.10 (Quantal Quetzal) and Ubuntu 12.04 LTS (Precise Pangolin) operating systems.
According to Canonical, Bind could have been made to crash if it received specially-crafted network traffic.
It was discovered that Bind incorrectly handled certain crafted queries when DNS64 was enabled.
On October 3rd, in a security notice Canonical published details about a QEMU vulnerability for its Ubuntu 12.04 LTS, Ubuntu 11.10, Ubuntu 11.04, and Ubuntu 10.04 LTS operating systems.
According to Canonical, QEMU could have been made to crash or run programs. It was discovered that QEMU incorrectly handled certain VT100 escape sequences.
On September 27th, in a security notice Canonical published details about a libxml2 vulnerability for its Ubuntu 12.04 LTS, Ubuntu 11.10, Ubuntu 11.04, Ubuntu 10.04 LTS, and Ubuntu 8.04 LTS operating systems.
According to Canonical, applications using libxml2 could have been made to crash or run programs if users opened a specially crafted file.
Juri Aedla, the user who discovered the vulnerabil
Email this page
