USN-5553-1: libjpeg-turbo vulnerabilities ›
8 August 2022
Several security issues were fixed in libjpeg-turbo.
CVE-2020-17541 , CVE-2020-14152 , CVE-2018-14498 , and 1 other
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
8 August 2022
Several security issues were fixed in libjpeg-turbo.
CVE-2020-17541 , CVE-2020-14152 , CVE-2018-14498 , and 1 other
8 August 2022
GDK-PixBuf could be made to crash or run programs as your login if it opened a specially crafted file.
8 August 2022
phpLiteAdmin could allow cross-site scripting (XSS) attacks.
8 August 2022
Several security issues were fixed in Roundcube Webmail.
CVE-2020-13964 , CVE-2020-13965 , CVE-2021-44026 , and 9 others
4 August 2022
libxml2 could be made to execute arbitrary code if it received a specially crafted file.
4 August 2022
Several security issues were fixed in OpenJDK 8.
CVE-2022-21434 , CVE-2022-34169 , CVE-2022-21426 , and 5 others
4 August 2022
mod-wsgi could allow unintended access to network services.
4 August 2022
Several security issues were fixed in GnuTLS.
4 August 2022
Django could be made to expose sensitive information if it received an specially crafted input.
4 August 2022
Several security issues were fixed in OpenJDK.
CVE-2022-21541 , CVE-2022-21540 , CVE-2022-21549 , and 7 others