Saturday, January 25, 2025
HomeSecurity UpdateUbuntu Security Updates for Vulnerabilities that Affects Multiple Versions

Ubuntu Security Updates for Vulnerabilities that Affects Multiple Versions

Published on

SIEM as a Service

Follow Us on Google News

Ubuntu Security Updates for the vulnerabilities that affect multiple releases of Ubuntu and its derivatives. The vulnerabilities are fixed with the latest packages if you have enabled automatic update in your Ubuntu servers the updates will be applied automatically.

ClamAV regression

Latest package update fixes vulnerabilities with ClamAVthst fails in handling certain HWP and PDF files in previous versions. This could be exploited by a remote attacker resulting in a DOS attack.

The vulnerability can be tracked as CVE-2018-0360, CVE-2018-0361, the issue found in Ubuntu 12.04 ESM, Ubuntu 18.04 LTS Ubuntu 16.04 LTS and Ubuntu 14.04 LTS and it has been fixed with clamav – 0.100.1+dfsg-1ubuntu0.12.04.2, clamav – 0.100.1+dfsg-1ubuntu0.18.04.2, clamav – 0.100.1+dfsg-1ubuntu0.16.04.2 and clamav – 0.100.1+dfsg-1ubuntu0.14.04.2.

Data Server vulnerability

Evolution Data Server leads to the sensitive exposure of data over the network, it may result in the user’s password being unexpectedly sent in clear text, even though the user had requested to use SSL.

Data Server vulnerability tracked as CVE-2016-10727, it affects Ubuntu 16.04 LTS and Ubuntu 14.04 LTS.

The Vulnerability can be fixed by updating to following packages, with Ubuntu 16.04 LTS

evolution-data-server – 3.18.5-1ubuntu1.1
evolution-data-server-common – 3.18.5-1ubuntu1.1
libcamel-1.2-54 – 3.18.5-1ubuntu1.1
libebackend-1.2-10 – 3.18.5-1ubuntu1.1
libedataserver-1.2-21 – 3.18.5-1ubuntu1.1

For Ubuntu 14.04 LTS the fixed package versions

evolution-data-server – 3.10.4-0ubuntu1.6
evolution-data-server-common – 3.10.4-0ubuntu1.6
libcamel-1.2-45 – 3.10.4-0ubuntu1.6
libebackend-1.2-7 – 3.10.4-0ubuntu1.6
libedataserver-1.2-18 – 3.10.4-0ubuntu1.6

Also Read

Google Chrome to Show Not Secure For HTTP Sites and Fix for 42 Security Issues

Apache Software Foundation Releases Important Security Patches for Multiple Apache Tomcat Versions

Cisco Released Critical Security Updates for Vulnerabilities that Affected Cisco Products

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Subaru’s STARLINK Connected Car’s Vulnerability Let Attackers Gain Restricted Access

In a groundbreaking discovery on November 20, 2024, cybersecurity researchers Shubham Shah and a...

Android Kiosk Tablets Vulnerability Let Attackers Control AC & Lights

A security flaw found in Android-based kiosk tablets at luxury hotels has exposed a...

CISA Releases Six ICS Advisories Details Security Issues

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued six Industrial Control Systems (ICS)...

Juniper Routers Exploited via Magic Packet Vulnerability to Deploy Custom Backdoor

A sophisticated cyber campaign dubbed "J-magic" has been discovered targeting enterprise-grade Juniper routers with...

API Security Webinar

Free Webinar - DevSecOps Hacks

By embedding security into your CI/CD workflows, you can shift left, streamline your DevSecOps processes, and release secure applications faster—all while saving time and resources.

In this webinar, join Phani Deepak Akella ( VP of Marketing ) and Karthik Krishnamoorthy (CTO), Indusface as they explores best practices for integrating application security into your CI/CD workflows using tools like Jenkins and Jira.

Discussion points

Automate security scans as part of the CI/CD pipeline.
Get real-time, actionable insights into vulnerabilities.
Prioritize and track fixes directly in Jira, enhancing collaboration.
Reduce risks and costs by addressing vulnerabilities pre-production.

More like this

Wireshark 4.4.2 Released: What’s New!

The Wireshark Foundation has officially announced the release of Wireshark 4.4.2, the latest version...

Parrot Security OS 6.1 Released – What’s New

The Parrot Security team has officially announced the release of Parrot OS 6.1, the...

SAP Security: Code Injection & Other Vulnerabilities Patched

Organizations using SAP products are urged to prioritize patching vulnerabilities outlined in the latest...