USN-6887-1: OpenSSH vulnerability ›
9 July 2024
OpenSSH could be made to expose timing information over the network.
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
9 July 2024
OpenSSH could be made to expose timing information over the network.
9 July 2024
Several security issues were fixed in Go.
CVE-2023-45290 , CVE-2024-24788 , CVE-2024-24784 , and 6 others
9 July 2024
Tomcat could allow unintended access to network services.
8 July 2024
Several security issues were fixed in Apache HTTP Server.
CVE-2024-38475 , CVE-2024-38474 , CVE-2024-39573 , and 5 others
8 July 2024
Nova would allow unintended access to files over the network.
8 July 2024
OpenStack Glance would allow unintended access to files over the network.
8 July 2024
Cinder would allow unintended access to files over the network.
8 July 2024
Exim could be made to allow response injection if it received a specially crafted response.
4 July 2024
Virtuoso Open-Source Edition could be made to crash if it received specially crafted input.
CVE-2023-48945 , CVE-2023-31631 , CVE-2023-48951 , and 10 others
4 July 2024
Several security issues were fixed in the Linux kernel.
CVE-2021-33631 , CVE-2021-47063 , CVE-2023-52615 , and 9 others