The official site for Saudi CERT
ubuntu Updates
2618
Warning Date
Severity Level
Warning Number
Target Sector
29 September, 2020
● Medium
2020-1848
All
Description:
ubuntu has released security updates to address several vulnerabilities in the following products:
- ssvnc - Enhanced TightVNC viewer with SSL/SSH tunnel helper
- Ubuntu 16.04 LTS
- dpdk - set of libraries for fast packet processing
- Ubuntu 20.04 LTS
- sudo - Provide limited super user privileges to specific users
- Ubuntu 14.04 ESM
- libuv1 - asynchronous event notification library - runtime library
- Ubuntu 20.04 LTS
- squid3 - Web proxy cache server
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS
- italc - didact tool which allows teachers to view and control computer labs
- Ubuntu 18.04 LTS
- imagemagick - Image manipulation programs and library
- Ubuntu 20.04 LTS
- teeworlds - online multi-player platform 2D shooter
- Ubuntu 20.04 LTS
- pam-python - Enables PAM modules to be written in Python
- Ubuntu 18.04 LTS
- libpgf - Progressive Graphics File (PGF) library
- Ubuntu 16.04 LTS
- firefox - Mozilla Open Source web browser
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- HTTP request smuggling attack
- Buffer overflow
- Denial of service attack (DoS)
Best practice and Recommendations:
The CERT team encourages users to review ubuntu security advisory and apply the necessary updates:
- https://ubuntu.com/security/notices/USN-4554-1
- https://ubuntu.com/security/notices/USN-3968-3
- https://ubuntu.com/security/notices/USN-4550-1
- https://ubuntu.com/security/notices/USN-4546-1
- https://ubuntu.com/security/notices/USN-4551-1
- https://ubuntu.com/security/notices/USN-4547-1
- https://ubuntu.com/security/notices/USN-4552-1
- https://ubuntu.com/security/notices/USN-4553-1
- https://ubuntu.com/security/notices/USN-4547-2
- https://ubuntu.com/security/notices/USN-4548-1
- https://ubuntu.com/security/notices/USN-4549-1
Rate the content
Share the page
