USN-6805-1: libarchive vulnerability ›
4 June 2024
libarchive could be made to crash or run programs as your login if it opened a specially crafted file.
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
4 June 2024
libarchive could be made to crash or run programs as your login if it opened a specially crafted file.
31 May 2024
Several security issues were fixed in GNU C Library.
CVE-2024-33601 , CVE-2024-33599 , CVE-2024-33600 , and 1 other
30 May 2024
FFmpeg could be made to crash or run programs as your login if it opened a specially crafted file.
CVE-2023-51795 , CVE-2023-49502 , CVE-2024-31585 , and 12 others
30 May 2024
PostgreSQL could be made to expose sensitive information.
30 May 2024
PyMySQL could be vulnerable to SQL injection attacks.
30 May 2024
browserify-sign could allow unintended access if it opened a specially crafted file.
29 May 2024
Werkzeug could be made to execute code under certain circumstances.
29 May 2024
GStreamer Base Plugins could be made to crash or run programs as your login if it opened a specially crafted file.
29 May 2024
Several security issues were fixed in TPM2 Software Stack.
29 May 2024
Several security issues were fixed in Intel Microcode.
CVE-2023-46103 , CVE-2023-22655 , CVE-2023-39368 , and 6 others