Linux Compatible - Ubuntu (Page 12)

USN-170-1: gnupg vulnerability

Ubuntu 7126 Published 2005-08-20 07:27 by Philipp Esselbach 0

A gnupg security update has been released for Ubuntu Linux 4.10 and 5.04

==========================================================
Ubuntu Security Notice USN-170-1 August 19, 2005
gnupg vulnerability
CAN-2005-0366
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

gnupg

The problem can be corrected by upgrading the affected package to version 1.2.4-4ubuntu2.1 (for Ubuntu 4.10), or 1.2.5-3ubuntu5.1 (for Ubuntu 5.04). In general, a standard system upgrade is sufficient to effect the necessary changes.

USN-169-1: Linux kernel vulnerabilities

Ubuntu 7126 Published 2005-08-19 03:42 by Philipp Esselbach 0

A kernel update is available for Ubuntu Linux

==========================================================
Ubuntu Security Notice USN-169-1 August 19, 2005
linux-source-2.6.8.1, linux-source-2.6.10 vulnerabilities
CAN-2005-2098, CAN-2005-2456, CAN-2005-2457, CAN-2005-2458,
CAN-2005-2459, CAN-2005-2548, CAN-2005-2555
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

linux-image-2.6.10-5-386
linux-image-2.6.10-5-686
linux-image-2.6.10-5-686-smp
linux-image-2.6.10-5-amd64-generic
linux-image-2.6.10-5-amd64-k8
linux-image-2.6.10-5-amd64-k8-smp
linux-image-2.6.10-5-amd64-xeon
linux-image-2.6.10-5-itanium
linux-image-2.6.10-5-itanium-smp
linux-image-2.6.10-5-k7
linux-image-2.6.10-5-k7-smp
linux-image-2.6.10-5-mckinley
linux-image-2.6.10-5-mckinley-smp
linux-image-2.6.10-5-power3
linux-image-2.6.10-5-power3-smp
linux-image-2.6.10-5-power4
linux-image-2.6.10-5-power4-smp
linux-image-2.6.10-5-powerpc
linux-image-2.6.10-5-powerpc-smp
linux-image-2.6.8.1-5-386
linux-image-2.6.8.1-5-686
linux-image-2.6.8.1-5-686-smp
linux-image-2.6.8.1-5-amd64-generic
linux-image-2.6.8.1-5-amd64-k8
linux-image-2.6.8.1-5-amd64-k8-smp
linux-image-2.6.8.1-5-amd64-xeon
linux-image-2.6.8.1-5-k7
linux-image-2.6.8.1-5-k7-smp
linux-image-2.6.8.1-5-power3
linux-image-2.6.8.1-5-power3-smp
linux-image-2.6.8.1-5-power4
linux-image-2.6.8.1-5-power4-smp
linux-image-2.6.8.1-5-powerpc
linux-image-2.6.8.1-5-powerpc-smp
linux-patch-debian-2.6.8.1
linux-patch-ubuntu-2.6.10

The problem can be corrected by upgrading the affected package to version 2.6.8.1-16.21 (for Ubuntu 4.10), or 2.6.10-34.4 (for Ubuntu 5.04). You need to reboot your computer after a standard system upgrade to effect the necessary changes.

USN-168-1: Gaim vulnerabilities

Ubuntu 7126 Published 2005-08-12 09:37 by Bob 0

A new Gaim vulnerabilities update is available for Ubuntu Linux. Here the announcement:

USN-167-1: AWStats vulnerability

Ubuntu 7126 Published 2005-08-11 18:31 by Bob 0

A new AWStats vulnerability update is available for Ubuntu Linux. Here the announcement:

USN-165-1: heartbeat vulnerability

Ubuntu 7126 Published 2005-08-11 10:12 by Philipp Esselbach 0

A heartbeat update has been released for Ubuntu Linux

==========================================================
Ubuntu Security Notice USN-165-1 August 11, 2005
heartbeat vulnerability
CAN-2005-2231
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

heartbeat

The problem can be corrected by upgrading the affected package to version 1.2.2-8ubuntu0.1 (for Ubuntu 4.10), or 1.2.3-3ubuntu1.1 (for Ubuntu 5.04). In general, a standard system upgrade is sufficient to effect the necessary changes.

USN-166-1: Evolution vulnerabilities

Ubuntu 7126 Published 2005-08-11 09:44 by Philipp Esselbach 0

An Evolution update has been released for Ubuntu Linux

==========================================================
Ubuntu Security Notice USN-166-1 August 11, 2005
evolution vulnerabilities
http://lists.grok.org.uk/pipermail/full-disclosure/2005-August/035922.html
CAN-2005-0806
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

evolution

The problem can be corrected by upgrading the affected package to version 2.0.2-0ubuntu2.3 (for Ubuntu 4.10), or 2.2.1.1-0ubuntu4.2 (for Ubuntu 5.04). After performing a standard system upgrade you need to restart Evolution to effect the necessary changes.

USN-164-1: netpbm vulnerability

Ubuntu 7126 Published 2005-08-11 09:27 by Philipp Esselbach 0

A netpbm vulnerability update has been released for Ubuntu Linux

==========================================================
Ubuntu Security Notice USN-164-1 August 11, 2005
netpbm-free vulnerability
CAN-2005-2471
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

netpbm

The problem can be corrected by upgrading the affected package to version 2:10.0-5ubuntu0.1 (for Ubuntu 4.10), or 2:10.0-8ubuntu0.1 (for Ubuntu 5.04). In general, a standard system upgrade is sufficient to effect the necessary changes.

USN-163-1: xpdf vulnerability

Ubuntu 7126 Published 2005-08-09 12:14 by Philipp Esselbach 0

A xpdf security update is available for Ubuntu Linux

==========================================================
Ubuntu Security Notice USN-163-1 August 09, 2005
xpdf vulnerability
CAN-2005-2097
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

xpdf-reader
xpdf-utils
kpdf

The problem can be corrected by upgrading the affected package to version 3.00-8ubuntu1.5 (for Ubuntu 4.10), or 3.00-11ubuntu3.1 (xpdf-reader and xpdf-utils for Ubuntu 5.04) and 4:3.4.0-0ubuntu3.1 (kpdf for Ubuntu 5.04). In general, a standard system upgrade is sufficient to effect the necessary changes.

USN-162-1: ekg and Gadu library vulnerabilities

Ubuntu 7126 Published 2005-08-09 04:53 by Philipp Esselbach 0

An ekg and Gadu library security update has been released for Ubuntu Linux 5.04

===========================================================
Ubuntu Security Notice USN-162-1 August 08, 2005
ekg vulnerabilities
CAN-2005-1850, CAN-2005-1851, CAN-2005-1852, CAN-2005-1916,
CAN-2005-2369, CAN-2005-2370, CAN-2005-2448
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

ekg
libgadu3

The problem can be corrected by upgrading the affected package to version 1:1.5-4ubuntu1.2. In general, a standard system upgrade is sufficient to effect the necessary changes. If you use the Instant Messaging application "Kopete", you need to restart it after the upgrade since it uses the libgadu3 library package.

USN-161-1: bzip2 utility vulnerability

Ubuntu 7126 Published 2005-08-04 15:44 by Philipp Esselbach 0

A bzip2 utility security update has been released for Ubuntu Linux

==========================================================
Ubuntu Security Notice USN-161-1 August 04, 2005
bzip2 vulnerability
CAN-2005-0758
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

bzip2

The problem can be corrected by upgrading the affected package to version 1.0.2-1ubuntu0.2 (for Ubuntu 4.10), or 1.0.2-2ubuntu0.2 (for Ubuntu 5.04). In general, a standard system upgrade is sufficient to effect the necessary changes.

Details follow:

USN-158-1 fixed a command injection vulnerability in the "zgrep" utility. It was determined that the "bzgrep" counterpart in the bzip2 package is vulnerable to the same flaw.

bzgrep did not handle shell metacharacters like '|' and '&' properly when they occurred in input file names. This could be exploited to execute arbitrary commands with user privileges if bzgrep was run in an untrusted directory with specially crafted file names.

USN-160-1: Apache 2 vulnerabilities

Ubuntu 7126 Published 2005-08-04 11:20 by Philipp Esselbach 0

An Apache 2 update has been released for Ubuntu Linux

==========================================================
Ubuntu Security Notice USN-160-1 August 04, 2005
apache2 vulnerabilities
CAN-2005-1268, CAN-2005-2088
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

apache2-mpm-perchild
apache2-mpm-prefork
apache2-mpm-threadpool
apache2-mpm-worker

The problem can be corrected by upgrading the affected package to version 2.0.50-12ubuntu4.3 (for Ubuntu 4.10), or 2.0.53-5ubuntu5.2 (for Ubuntu 5.04). In general, a standard system upgrade is sufficient to effect the necessary changes.

USN-157-2: Updated Mozilla Thunderbird Enigmail plugin for Ubuntu 4.10

Ubuntu 7126 Published 2005-08-02 16:11 by Philipp Esselbach 0

Updated Mozilla Thunderbird Enigmail plugin packages are available for Ubuntu Linux 4.10

==========================================================
Ubuntu Security Notice USN-157-2 August 02, 2005
updated enigmail
==========================================================

A security issue affects the following Ubuntu releases:
Ubuntu 4.10 (Warty Warthog)

The following packages are affected:

mozilla-thunderbird-enigmail

The problem can be corrected by upgrading the affected package to version 2:0.92-1ubuntu04.10.1. In general, a standard system upgrade is sufficient to effect the necessary changes.

USN-159-1: unzip vulnerability

Ubuntu 7126 Published 2005-08-01 07:15 by Philipp Esselbach 0

An unzip security update has been released for Ubuntu Linux

==========================================================
Ubuntu Security Notice USN-159-1 August 01, 2005
unzip vulnerability
CAN-2005-0602
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

unzip

The problem can be corrected by upgrading the affected package to version 5.51-2ubuntu0.1 (for Ubuntu 4.10), or 5.51-2ubuntu1.1 (for Ubuntu 5.04). In general, a standard system upgrade is sufficient to effect the necessary changes.

USN-158-1: gzip utility vulnerability

Ubuntu 7126 Published 2005-08-01 07:10 by Philipp Esselbach 0

A gzip utility security update has been released for Ubuntu Linux

==========================================================
Ubuntu Security Notice USN-158-1 August 01, 2005
gzip vulnerability
CAN-2005-0758
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

gzip

The problem can be corrected by upgrading the affected package to version 1.3.5-9ubuntu3.3 (for Ubuntu 4.10), or 1.3.5-9ubuntu3.4 (for Ubuntu 5.04). In general, a standard system upgrade is sufficient to effect the necessary changes.

USN-157-1: Mozilla Thunderbird vulnerabilities

Ubuntu 7126 Published 2005-08-01 04:16 by Philipp Esselbach 0

A Mozilla Thunderbird security update has been released for Ubuntu Linux

==========================================================
Ubuntu Security Notice USN-157-1 August 01, 2005
mozilla-thunderbird vulnerabilities
CAN-2005-0989, CAN-2005-1159, CAN-2005-1160, CAN-2005-1532,
CAN-2005-2261, CAN-2005-2265, CAN-2005-2269, CAN-2005-2270,
CAN-2005-2353
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

mozilla-thunderbird
mozilla-thunderbird-enigmail

The problem can be corrected by upgrading the affected package to version 1.0.6-0ubuntu04.10 (for Ubuntu 4.10), or 1.0.6-0ubuntu05.04 (for Ubuntu 5.04). You need to restart Thunderbird after a standard system upgrade to effect the necessary changes.

USN-156-1: TIFF vulnerability

Ubuntu 7126 Published 2005-07-29 06:31 by Philipp Esselbach 0

A TIFF update has been released for Ubuntu Linux 4.10 and 5.04

==========================================================
Ubuntu Security Notice USN-156-1 July 29, 2005
tiff vulnerability
https://bugzilla.ubuntu.com/show_bug.cgi?id=12008
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

libtiff4

The problem can be corrected by upgrading the affected package to version 3.6.1-1.1ubuntu1.4 (for Ubuntu 4.10), or 3.6.1-5ubuntu0.2 (for Ubuntu 5.04). After a standard system upgrade you need to restart your CUPS server with

sudo /etc/init.d/cupsys restart

to effect the necessary changes.

USN-155-1: Mozilla vulnerabilities

Ubuntu 7126 Published 2005-07-29 04:10 by Philipp Esselbach 0

A Mozilla security update has been released for Ubuntu Linux

===========================================================
Ubuntu Security Notice USN-155-1 July 26, 2005
mozilla vulnerabilities
CAN-2005-1531, CAN-2005-1532, CAN-2005-1937, CAN-2005-2260,
CAN-2005-2261, CAN-2005-2263, CAN-2005-2265, CAN-2005-2266,
CAN-2005-2268, CAN-2005-2269, CAN-2005-2270
===========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

mozilla-browser
mozilla-mailnews

The problem can be corrected by upgrading the affected package to version 2:1.7.10-0ubuntu04.10 (for Ubuntu 4.10), or 2:1.7.10-0ubuntu05.04 (for Ubuntu 5.04). After a standard system upgrade you need to restart Mozilla to effect the necessary changes.

USN-155-2: Updated Epiphany packages to match Mozilla security update

Ubuntu 7126 Published 2005-07-29 04:01 by Philipp Esselbach 0

Updated Epiphany packages are available for Ubuntu Linux

==========================================================
Ubuntu Security Notice USN-155-2 July 28, 2005
epiphany-browser regressions
https://bugzilla.ubuntu.com/show_bug.cgi?id=13041
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)

The following packages are affected:

epiphany-browser

The problem can be corrected by upgrading the affected package to version 1.4.4-0ubuntu2.1. After a standard system upgrade you need to restart Epiphany to effect the necessary changes.

USN-149-3: Ubuntu 4.10 update for Firefox vulnerabilities

Ubuntu 7126 Published 2005-07-28 10:39 by Philipp Esselbach 0

An Ubuntu 4.10 update for the Firefox vulnerabilities has been released

==========================================================
Ubuntu Security Notice USN-149-3 July 28, 2005
mozilla-firefox vulnerabilities
CAN-2004-1156, CAN-2004-1381, CAN-2005-0141, CAN-2005-0142,
CAN-2005-0143, CAN-2005-0144, CAN-2005-0145, CAN-2005-0146,
CAN-2005-0147, CAN-2005-0150, CAN-2005-0230, CAN-2005-0231,
CAN-2005-0232, CAN-2005-0233, CAN-2005-0255, CAN-2005-0399,
CAN-2005-0401, CAN-2005-0402, CAN-2005-0578, CAN-2005-0584,
CAN-2005-0585, CAN-2005-0586, CAN-2005-0587, CAN-2005-0588,
CAN-2005-0589, CAN-2005-0590, CAN-2005-0591, CAN-2005-0592,
CAN-2005-0593, CAN-2005-0752, CAN-2005-0989, CAN-2005-1153,
CAN-2005-1154, CAN-2005-1155, CAN-2005-1156, CAN-2005-1157,
CAN-2005-1158, CAN-2005-1159, CAN-2005-1160, CAN-2005-1531,
CAN-2005-1532, CAN-2005-1937, CAN-2005-2260, CAN-2005-2261,
CAN-2005-2262, CAN-2005-2263, CAN-2005-2264, CAN-2005-2265,
CAN-2005-2266, CAN-2005-2267, CAN-2005-2268, CAN-2005-2269,
CAN-2005-2270
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)

The following packages are affected:

mozilla-firefox
mozilla-firefox-locale-ca
mozilla-firefox-locale-de
mozilla-firefox-locale-es
mozilla-firefox-locale-fr
mozilla-firefox-locale-it
mozilla-firefox-locale-ja
mozilla-firefox-locale-nb
mozilla-firefox-locale-pl
mozilla-firefox-locale-tr
mozilla-firefox-locale-uk

The problem can be corrected by upgrading the affected package to version 1.0.6-0ubuntu0.0.1 (mozilla-firefox) and 1.0.6-0ubuntu0.1 (mozilla-firefox-locale-... packages).

Please note that the new version does not work with the already existing translation packages (mozilla-firefox-locale-...). New packages have been provided which are compatible to the new Firefox version of this security update, so they need to be upgraded as well (a standard system upgrade will take care of this).

After a standard system upgrade you need to restart Firefox to effect the necessary changes.

We apologize for the huge delay of this update; we changed our update strategy for Mozilla products to make sure that such long delays will not happen again.

USN-154-1: vim vulnerability

Ubuntu 7126 Published 2005-07-26 12:19 by Philipp Esselbach 0

A vim security update has been released for Ubuntu Linux

==========================================================
Ubuntu Security Notice USN-154-1 July 26, 2005
vim vulnerability
http://www.guninski.com/where_do_you_want_billg_to_go_today_5.html
==========================================================

A security issue affects the following Ubuntu releases:

Ubuntu 4.10 (Warty Warthog)
Ubuntu 5.04 (Hoary Hedgehog)

The following packages are affected:

kvim
kvim-perl
kvim-python
kvim-tcl
vim
vim-gnome
vim-gtk
vim-lesstif
vim-perl
vim-python
vim-tcl

The problem can be corrected by upgrading the affected package to version 1:6.3-025+1ubuntu2.3 (for Ubuntu 4.10), or 1:6.3-046+1ubuntu7.1 (for Ubuntu 5.04). In general, a standard system upgrade is sufficient to effect the necessary changes.