Sign up to save your podcasts
Or
Share Episode 178
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 178
Overview
You can’t test your way out of security vulnerabilities (at least when writing
your code in C), plus we cover security updates for Intel Microcode, vim,
Wayland, the Linux kernel, SQLite and more.
This week in Ubuntu Security Updates
68 unique CVEs addressed
[USN-5606-2] poppler regression [00:45]
JBIG2 decoder
CMakeLists.txt to ensure a new header file that was added as part of the
security update is actually installed by the libpoppler-dev package - without
this if installed the update and then tried to recompile something locally it
would fail
[USN-5612-1] Intel Microcode vulnerability [01:29]
for SGX
[USN-5613-1, USN-5613-2] Vim vulnerabilities [01:54]
crafted files - have said in the past that vim is fast becoming one of the
most security-patched packages in Ubuntu - all driven by their bug-bounty
https://huntr.dev/repos/vim/vim/
[USN-5614-1] Wayland vulnerability [02:17]
references - but on a 64-bit machine it is quite possible that a malicious
client could allocate a huge amount of buffers to overflow and then possibly
get a UAF - highly unlikely to be able to exploit in practice since would also
need a large number of connections to the compositor as well - fixed by
limiting the max number of objects that can be allocated
[USN-5615-1] SQLite vulnerabilities [03:01]
actual vuln
that the actual library itself
tests, fuzz tests, boundary conditions, regression tests, valgrind, UB etc
your code in C which has just too many different operations that have UB
logic flaws and hence security vulns (eg. failing to properly validate a
TLS cert or similar)
[USN-5616-1] Linux kernel (Intel IoTG) vulnerabilities [06:00]
UAF, KVM NULL ptr deref, various file-system OOB R/W etc
[USN-5621-1] Linux kernel vulnerabilities [06:32]
[USN-5622-1] Linux kernel vulnerabilities [06:57]
x*** [USN-5624-1] Linux kernel vulnerabilities [07:05]
[USN-5623-1] Linux kernel (HWE) vulnerabilities [07:12]
ranges from crashing guest and exposing its memory to DoS services on the host
[USN-5617-1] Xen vulnerabilities [07:45]
patched in a single update for this week
code-exec etc
[USN-5619-1] LibTIFF vulnerabilities [08:17]
buffer overflows etc
[USN-5618-1] Ghostscript vulnerability [08:49]
[USN-5626-1] Bind vulnerabilities [08:58]
resource-based DoS, buffer over-read -> info leak / crash, assertion-based
crash via crafted query
[USN-5625-1] Mako vulnerability [09:22]
Goings on in Ubuntu Security Community
Preparing for the release of Ubuntu Pro [09:44]
day in the coming week or two - more details to come
Get in contact
View all episodes
By Ubuntu Security Team
4.8
1010 ratings
Overview
You can’t test your way out of security vulnerabilities (at least when writing
your code in C), plus we cover security updates for Intel Microcode, vim,
Wayland, the Linux kernel, SQLite and more.
This week in Ubuntu Security Updates
68 unique CVEs addressed
[USN-5606-2] poppler regression [00:45]
JBIG2 decoder
CMakeLists.txt to ensure a new header file that was added as part of the
security update is actually installed by the libpoppler-dev package - without
this if installed the update and then tried to recompile something locally it
would fail
[USN-5612-1] Intel Microcode vulnerability [01:29]
for SGX
[USN-5613-1, USN-5613-2] Vim vulnerabilities [01:54]
crafted files - have said in the past that vim is fast becoming one of the
most security-patched packages in Ubuntu - all driven by their bug-bounty
https://huntr.dev/repos/vim/vim/
[USN-5614-1] Wayland vulnerability [02:17]
references - but on a 64-bit machine it is quite possible that a malicious
client could allocate a huge amount of buffers to overflow and then possibly
get a UAF - highly unlikely to be able to exploit in practice since would also
need a large number of connections to the compositor as well - fixed by
limiting the max number of objects that can be allocated
[USN-5615-1] SQLite vulnerabilities [03:01]
actual vuln
that the actual library itself
tests, fuzz tests, boundary conditions, regression tests, valgrind, UB etc
your code in C which has just too many different operations that have UB
logic flaws and hence security vulns (eg. failing to properly validate a
TLS cert or similar)
[USN-5616-1] Linux kernel (Intel IoTG) vulnerabilities [06:00]
UAF, KVM NULL ptr deref, various file-system OOB R/W etc
[USN-5621-1] Linux kernel vulnerabilities [06:32]
[USN-5622-1] Linux kernel vulnerabilities [06:57]
x*** [USN-5624-1] Linux kernel vulnerabilities [07:05]
[USN-5623-1] Linux kernel (HWE) vulnerabilities [07:12]
ranges from crashing guest and exposing its memory to DoS services on the host
[USN-5617-1] Xen vulnerabilities [07:45]
patched in a single update for this week
code-exec etc
[USN-5619-1] LibTIFF vulnerabilities [08:17]
buffer overflows etc
[USN-5618-1] Ghostscript vulnerability [08:49]
[USN-5626-1] Bind vulnerabilities [08:58]
resource-based DoS, buffer over-read -> info leak / crash, assertion-based
crash via crafted query
[USN-5625-1] Mako vulnerability [09:22]
Goings on in Ubuntu Security Community
Preparing for the release of Ubuntu Pro [09:44]
day in the coming week or two - more details to come
Get in contact