USN-6841-2: PHP vulnerability ›
9 September 2024
PHP could be made to accept invalid URLs.
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
9 September 2024
PHP could be made to accept invalid URLs.
9 September 2024
Several security issues were fixed in WebKitGTK.
CVE-2024-40789 , CVE-2024-4558 , CVE-2024-40779 , and 3 others
9 September 2024
Several security issues were fixed in Thunderbird.
CVE-2024-7526 , CVE-2024-7521 , CVE-2024-7519 , and 7 others
5 September 2024
Several security issues were fixed in Netty.
5 September 2024
python-aiohttp would allow unintended access to files over the network.
5 September 2024
Several security issues were fixed in Vim.
5 September 2024
Several security issues were fixed in Firefox.
CVE-2024-8385 , CVE-2024-8387 , CVE-2024-8383 , and 5 others
4 September 2024
znc could be made to execute arbitrary code on a user's system if they were persuaded to join a malicious server.
4 September 2024
OpenStack could be made to expose sensitive information.
4 September 2024
Several security issues were fixed in ImageMagick.
CVE-2019-12975 , CVE-2019-11470 , CVE-2019-11472 , and 8 others