USN-6754-1: nghttp2 vulnerabilities ›
25 April 2024
Several security issues were fixed in nghttp2.
CVE-2024-28182, CVE-2019-9511, CVE-2019-9513, and 1 other
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
25 April 2024
Several security issues were fixed in nghttp2.
CVE-2024-28182, CVE-2019-9511, CVE-2019-9513, and 1 other
25 April 2024
CryptoJS could be made to expose sensitive information.
25 April 2024
Zabbix could allow reflected cross-site scripting (XSS) attacks.
25 April 2024
Several security issues were fixed in FreeRDP.
CVE-2024-32658, CVE-2024-32659, CVE-2024-32660, and 1 other
25 April 2024
Several security issues were fixed in Thunderbird.
CVE-2024-3861, CVE-2024-3859, CVE-2024-2609, and 5 others
24 April 2024
Several security issues were fixed in the Linux kernel.
CVE-2023-52600, CVE-2024-26589, CVE-2024-26591, and 2 others
24 April 2024
Several security issues were fixed in Dnsmasq.
24 April 2024
Several security issues were fixed in FreeRDP.
CVE-2024-22211, CVE-2024-32458, CVE-2024-32460, and 4 others
24 April 2024
Several security issues were fixed in Sanitize.
24 April 2024
Several security issues were fixed in Firefox.
CVE-2024-3853, CVE-2024-3862, CVE-2024-3857, and 11 others