Category Archives: Ubuntu

Ubuntu Security Notices

Ubuntu

USN-2682-1: Linux kernel (Utopic HWE) vulnerabilities

July 24, 2015 007admin

Ubuntu Security Notice USN-2682-1

23rd July, 2015

linux-lts-utopic vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 14.04 LTS

Summary

Several security issues were fixed in the kernel.

Software description

linux-lts-utopic
– Linux hardware enablement kernel from Utopic

Details

A flaw was discovered in the kvm (kernel virtual machine) subsystem’s
kvm_apic_has_events function. A unprivileged local user could exploit this
flaw to cause a denial of service (system crash). (CVE-2015-4692)

A flaw was discovered in how the Linux kernel handles invalid UDP
checksums. A remote attacker could exploit this flaw to cause a denial of
service using a flood of UDP packets with invalid checksums.
(CVE-2015-5364)

A flaw was discovered in how the Linux kernel handles invalid UDP
checksums. A remote attacker can cause a denial of service against
applications that use epoll by injecting a single packet with an invalid
checksum. (CVE-2015-5366)

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 14.04 LTS:: linux-image-3.16.0-44-generic-lpae

3.16.0-44.59~14.04.1; linux-image-3.16.0-44-lowlatency

3.16.0-44.59~14.04.1; linux-image-3.16.0-44-powerpc-e500mc

3.16.0-44.59~14.04.1; linux-image-3.16.0-44-powerpc64-emb

3.16.0-44.59~14.04.1; linux-image-3.16.0-44-powerpc64-smp

3.16.0-44.59~14.04.1; linux-image-3.16.0-44-generic

3.16.0-44.59~14.04.1; linux-image-3.16.0-44-powerpc-smp

3.16.0-44.59~14.04.1

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to reboot your computer to make
all the necessary changes.

ATTENTION: Due to an unavoidable ABI change the kernel updates have
been given a new version number, which requires you to recompile and
reinstall all third party kernel modules you might have installed. If
you use linux-restricted-modules, you have to update that package as
well to get modules which work with the new kernel version. Unless you
manually uninstalled the standard kernel metapackages (e.g. linux-generic,
linux-server, linux-powerpc), a standard system upgrade will automatically
perform this as well.

References

CVE-2015-4692,

CVE-2015-5364,

CVE-2015-5366

Ubuntu

USN-2684-1: Linux kernel vulnerabilities

July 24, 2015 007admin

Ubuntu Security Notice USN-2684-1

23rd July, 2015

linux vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 15.04

Summary

Several security issues were fixed in the kernel.

Software description

linux
– Linux kernel

Details

Daniel Borkmann reported a kernel crash in the Linux kernel’s BPF filter
JIT optimization. A local attacker could exploit this flaw to cause a
denial of service (system crash). (CVE-2015-4700)

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 15.04:: linux-image-3.19.0-23-powerpc64-smp

3.19.0-23.24; linux-image-3.19.0-23-generic

3.19.0-23.24; linux-image-3.19.0-23-powerpc64-emb

3.19.0-23.24; linux-image-3.19.0-23-powerpc-smp

3.19.0-23.24; linux-image-3.19.0-23-generic-lpae

3.19.0-23.24; linux-image-3.19.0-23-lowlatency

3.19.0-23.24; linux-image-3.19.0-23-powerpc-e500mc

3.19.0-23.24

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to reboot your computer to make
all the necessary changes.

References

Ubuntu

USN-2675-1: LXC vulnerabilities

July 23, 2015 007admin

Ubuntu Security Notice USN-2675-1

22nd July, 2015

lxc vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 15.04
Ubuntu 14.10
Ubuntu 14.04 LTS

Summary

Several security issues were fixed in LXC.

Software description

lxc
– Linux Containers userspace tools

Details

Roman Fiedler discovered that LXC had a directory traversal flaw when creating
lock files. A local attacker could exploit this flaw to create an arbitrary
file as the root user. (CVE-2015-1331)

Roman Fiedler discovered that LXC incorrectly trusted the container’s proc
filesystem to set up AppArmor profile changes and SELinux domain transitions. A
local attacker could exploit this flaw to run programs inside the container
that are not confined by AppArmor or SELinux. (CVE-2015-1334)

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 15.04:: lxc

1.1.2-0ubuntu3.1; liblxc1

1.1.2-0ubuntu3.1
Ubuntu 14.10:: lxc

1.1.0~alpha2-0ubuntu3.3; liblxc1

1.1.0~alpha2-0ubuntu3.3
Ubuntu 14.04 LTS:: lxc

1.0.7-0ubuntu0.2; liblxc1

1.0.7-0ubuntu0.2

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

In general, a standard system update will make all the necessary changes. You
will need to restart your previously running LXC containers in Ubuntu 15.04 due
to bug that causes containers to be stopped on during lxc package installation
(https://launchpad.net/bugs/1476691).

References

CVE-2015-1331,

CVE-2015-1334

Ubuntu

USN-2676-1: NBD vulnerabilities

July 23, 2015 007admin

Ubuntu Security Notice USN-2676-1

22nd July, 2015

nbd vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 15.04
Ubuntu 14.10
Ubuntu 14.04 LTS
Ubuntu 12.04 LTS

Summary

Several security issues were fixed in NBD.

Software description

nbd
– Network Block Device protocol

Details

It was discovered that NBD incorrectly handled IP address matching. A
remote attacker could use this issue with an IP address that has a partial
match and bypass access restrictions. This issue only affected
Ubuntu 12.04 LTS. (CVE-2013-6410)

Tuomas Räsänen discovered that NBD incorrectly handled wrong export names
and closed connections during negotiation. A remote attacker could use this
issue to cause NBD to crash, resulting in a denial of service. This issue
only affected Ubuntu 12.04 LTS. (CVE-2013-7441)

Tuomas Räsänen discovered that NBD incorrectly handled signals. A remote
attacker could use this issue to cause NBD to crash, resulting in a denial
of service. (CVE-2015-0847)

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 15.04:: nbd-server

1:3.8-4ubuntu0.1
Ubuntu 14.10:: nbd-server

1:3.8-1ubuntu0.1
Ubuntu 14.04 LTS:: nbd-server

1:3.7-1ubuntu0.1
Ubuntu 12.04 LTS:: nbd-server

1:2.9.25-2ubuntu1.1

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

In general, a standard system update will make all the necessary changes.

References

CVE-2013-6410,

CVE-2013-7441,

CVE-2015-0847

Ubuntu

USN-2674-1: MySQL vulnerabilities

July 22, 2015 007admin

Ubuntu Security Notice USN-2674-1

21st July, 2015

mysql-5.5, mysql-5.6 vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 15.04
Ubuntu 14.10
Ubuntu 14.04 LTS
Ubuntu 12.04 LTS

Summary

Several security issues were fixed in MySQL.

Software description

mysql-5.5
– MySQL database
mysql-5.6
– MySQL database development files

Details

Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.

MySQL has been updated to 5.5.44 in Ubuntu 12.04 LTS, Ubuntu 14.04 LTS and
Ubuntu 14.10. Ubuntu 15.04 has been updated to MySQL 5.6.25.

In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes.

Please see the following for more information:
http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-44.html
http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-25.html
http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 15.04:: mysql-server-5.6

5.6.25-0ubuntu0.15.04.1
Ubuntu 14.10:: mysql-server-5.5

5.5.44-0ubuntu0.14.10.1
Ubuntu 14.04 LTS:: mysql-server-5.5

5.5.44-0ubuntu0.14.04.1
Ubuntu 12.04 LTS:: mysql-server-5.5

5.5.44-0ubuntu0.12.04.1

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

In general, a standard system update will make all the necessary changes.

References

Ubuntu

USN-2673-1: Thunderbird vulnerabilities

July 21, 2015 007admin

Ubuntu Security Notice USN-2673-1

20th July, 2015

thunderbird vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 15.04
Ubuntu 14.10
Ubuntu 14.04 LTS
Ubuntu 12.04 LTS

Summary

Several security issues were fixed in Thunderbird.

Software description

thunderbird
– Mozilla Open Source mail and newsgroup client

Details

Karthikeyan Bhargavan discovered that NSS incorrectly handled state
transitions for the TLS state machine. If a remote attacker were able to
perform a man-in-the-middle attack, this flaw could be exploited to skip
the ServerKeyExchange message and remove the forward-secrecy property.
(CVE-2015-2721)

Bob Clary, Christian Holler, Bobby Holley, and Andrew McCreight discovered
multiple memory safety issues in Thunderbird. If a user were tricked in to
opening a specially crafted website in a browsing context, an attacker
could potentially exploit these to cause a denial of service via
application crash, or execute arbitrary code with the privileges of the
user invoking Thunderbird. (CVE-2015-2724)

Ronald Crane discovered multiple security vulnerabilities. If a user were
tricked in to opening a specially crafted website in a browsing context,
an attacker could potentially exploit these to cause a denial of service
via application crash, or execute arbitrary code with the privileges of
the user invoking Thunderbird. (CVE-2015-2734, CVE-2015-2735,
CVE-2015-2736, CVE-2015-2737, CVE-2015-2738, CVE-2015-2739, CVE-2015-2740)

Matthew Green discovered a DHE key processing issue in NSS where a MITM
could force a server to downgrade TLS connections to 512-bit export-grade
cryptography. An attacker could potentially exploit this to impersonate
the server. (CVE-2015-4000)

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 15.04:: thunderbird

1:31.8.0+build1-0ubuntu0.15.04.1
Ubuntu 14.10:: thunderbird

1:31.8.0+build1-0ubuntu0.14.10.1
Ubuntu 14.04 LTS:: thunderbird

1:31.8.0+build1-0ubuntu0.14.04.1
Ubuntu 12.04 LTS:: thunderbird

1:31.8.0+build1-0ubuntu0.12.04.1

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to restart Thunderbird to make
all the necessary changes.

References

Ubuntu

USN-2656-2: Firefox vulnerabilities

July 16, 2015 007admin

Ubuntu Security Notice USN-2656-2

15th July, 2015

firefox vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 12.04 LTS

Summary

Firefox could be made to crash or run programs as your login if it
opened a malicious website.

Software description

firefox
– Mozilla Open Source web browser

Details

USN-2656-1 fixed vulnerabilities in Firefox for Ubuntu 14.04 LTS and
later releases.

This update provides the corresponding update for Ubuntu 12.04 LTS.

Original advisory details:

Looben Yan discovered 2 use-after-free issues when using XMLHttpRequest in
some circumstances. If a user were tricked in to opening a specially
crafted website, an attacker could potentially exploit these to cause a
denial of service via application crash, or execute arbitrary code with
the privileges of the user invoking Firefox. (CVE-2015-2722,
CVE-2015-2733)

Bob Clary, Christian Holler, Bobby Holley, Andrew McCreight, Terrence
Cole, Steve Fink, Mats Palmgren, Wes Kocher, Andreas Pehrson, Tooru
Fujisawa, Andrew Sutherland, and Gary Kwong discovered multiple memory
safety issues in Firefox. If a user were tricked in to opening a specially
crafted website, an attacker could potentially exploit these to cause a
denial of service via application crash, or execute arbitrary code with
the privileges of the user invoking Firefox. (CVE-2015-2724,
CVE-2015-2725, CVE-2015-2726)

Armin Razmdjou discovered that opening hyperlinks with specific mouse
and key combinations could allow a Chrome privileged URL to be opened
without context restrictions being preserved. If a user were tricked in to
opening a specially crafted website, an attacker could potentially exploit
this to bypass security restrictions. (CVE-2015-2727)

Paul Bandha discovered a type confusion bug in the Indexed DB Manager. If
a user were tricked in to opening a specially crafted website, an attacker
could potentially exploit this to cause a denial of service via
application crash or execute arbitrary code with the priviliges of the
user invoking Firefox. (CVE-2015-2728)

Holger Fuhrmannek discovered an out-of-bounds read in Web Audio. If a
user were tricked in to opening a specially crafted website, an attacker
could potentially exploit this to obtain sensitive information.
(CVE-2015-2729)

Watson Ladd discovered that NSS incorrectly handled Elliptical Curve
Cryptography (ECC) multiplication. A remote attacker could possibly use
this issue to spoof ECDSA signatures. (CVE-2015-2730)

A use-after-free was discovered when a Content Policy modifies the DOM to
remove a DOM object. If a user were tricked in to opening a specially
crafted website, an attacker could potentially exploit this to cause a
denial of service via application crash or execute arbitrary code with the
priviliges of the user invoking Firefox. (CVE-2015-2731)

Ronald Crane discovered multiple security vulnerabilities. If a user were
tricked in to opening a specially crafted website, an attacker could
potentially exploit these to cause a denial of service via application
crash, or execute arbitrary code with the privileges of the user invoking
Firefox. (CVE-2015-2734, CVE-2015-2735, CVE-2015-2736, CVE-2015-2737,
CVE-2015-2738, CVE-2015-2739, CVE-2015-2740)

David Keeler discovered that key pinning checks can be skipped when an
overridable certificate error occurs. This allows a user to manually
override an error for a fake certificate, but cannot be exploited on its
own. (CVE-2015-2741)

Jonas Jenwald discovered that some internal workers were incorrectly
executed with a high privilege. If a user were tricked in to opening a
specially crafted website, an attacker could potentially exploit this in
combination with another security vulnerability, to execute arbitrary code
in a privileged scope. (CVE-2015-2743)

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 12.04 LTS:: firefox

39.0+build5-0ubuntu0.12.04.2

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to restart Firefox to make
all the necessary changes.

References

Ubuntu

USN-2656-1: Firefox vulnerabilities

July 10, 2015 007admin

Ubuntu Security Notice USN-2656-1

9th July, 2015

firefox vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 15.04
Ubuntu 14.10
Ubuntu 14.04 LTS

Summary

Firefox could be made to crash or run programs as your login if it
opened a malicious website.

Software description

firefox
– Mozilla Open Source web browser

Details

Watson Ladd discovered that NSS incorrectly handled Elliptical Curve
Cryptography (ECC) multiplication. A remote attacker could possibly use
this issue to spoof ECDSA signatures. (CVE-2015-2730)

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 15.04:: firefox

39.0+build5-0ubuntu0.15.04.1
Ubuntu 14.10:: firefox

39.0+build5-0ubuntu0.14.10.1
Ubuntu 14.04 LTS:: firefox

39.0+build5-0ubuntu0.14.04.1

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

After a standard system update you need to restart Firefox to make
all the necessary changes.

References

Ubuntu

USN-2672-1: NSS vulnerabilities

July 10, 2015 007admin

Ubuntu Security Notice USN-2672-1

9th July, 2015

nss vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 15.04
Ubuntu 14.10
Ubuntu 14.04 LTS
Ubuntu 12.04 LTS

Summary

Several security issues were fixed in NSS.

Software description

nss
– Network Security Service library

Details

Watson Ladd discovered that NSS incorrectly handled Elliptical Curve
Cryptography (ECC) multiplication. A remote attacker could possibly use
this issue to spoof ECDSA signatures. (CVE-2015-2730)

As a security improvement, this update modifies NSS behaviour to reject DH
key sizes below 768 bits, preventing a possible downgrade attack.

This update also refreshes the NSS package to version 3.19.2 which includes
the latest CA certificate bundle.

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 15.04:: libnss3

2:3.19.2-0ubuntu15.04.1
Ubuntu 14.10:: libnss3

2:3.19.2-0ubuntu0.14.10.1
Ubuntu 14.04 LTS:: libnss3

2:3.19.2-0ubuntu0.14.04.1
Ubuntu 12.04 LTS:: libnss3

3.19.2-0ubuntu0.12.04.1

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

This update uses a new upstream release, which includes additional bug
fixes. After a standard system update you need to restart any applications
that use NSS, such as Evolution and Chromium, to make all the necessary
changes.

References

CVE-2015-2721,

CVE-2015-2730

Ubuntu

USN-2671-1: Django vulnerabilities

July 10, 2015 007admin

Ubuntu Security Notice USN-2671-1

9th July, 2015

python-django vulnerabilities

A security issue affects these releases of Ubuntu and its
derivatives:

Ubuntu 15.04
Ubuntu 14.10
Ubuntu 14.04 LTS
Ubuntu 12.04 LTS

Summary

Several security issues were fixed in Django.

Software description

python-django
– High-level Python web development framework

Details

Eric Peterson and Lin Hua Cheng discovered that Django incorrectly handled
session records. A remote attacker could use this issue to cause a denial
of service. (CVE-2015-5143)

Sjoerd Job Postmus discovered that DJango incorrectly handled newline
characters when performing validation. A remote attacker could use this
issue to perform header injection attacks. (CVE-2015-5144)

Update instructions

The problem can be corrected by updating your system to the following
package version:

Ubuntu 15.04:: python3-django

1.7.6-1ubuntu2.1; python-django

1.7.6-1ubuntu2.1
Ubuntu 14.10:: python3-django

1.6.6-1ubuntu2.3; python-django

1.6.6-1ubuntu2.3
Ubuntu 14.04 LTS:: python-django

1.6.1-2ubuntu0.9
Ubuntu 12.04 LTS:: python-django

1.3.1-4ubuntu1.17

To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.

In general, a standard system update will make all the necessary changes.

References

CVE-2015-5143,

CVE-2015-5144

Ubuntu Security Notice USN-2682-1

linux-lts-utopic vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2684-1

linux vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2675-1

lxc vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2676-1

nbd vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2674-1

mysql-5.5, mysql-5.6 vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2673-1

thunderbird vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2656-2

firefox vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2656-1

firefox vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2672-1

nss vulnerabilities

Summary

Software description

Details

Update instructions

References

Ubuntu Security Notice USN-2671-1

python-django vulnerabilities

Summary

Software description

Details

Update instructions

References

Software and Security Information