Sign up to save your podcasts
Or
Share Episode 212
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 212
Overview
With the Ubuntu Summit just around the corner, we preview a couple talks by the
Ubuntu Security team, plus we look at security updates for OpenSSL, Sofia-SIP,
AOM, ncurses, the Linux kernel and more.
This week in Ubuntu Security Updates
91 unique CVEs addressed
[USN-6437-1] VIPS vulnerabilities (00:35)
[USN-6435-1] OpenSSL vulnerabilities (01:26)
raise an error - but before the error is raised it would still check other
aspects of the supplied key / parameters which in turn could use the p value
and hence take an excessive amount of time - fixed by checking this earlier
and erroring out in that case
since the size of this has to be less than p was fixed by just checking it
against this
[USN-6450-1] OpenSSL vulnerabilities
the key or IV lengths differ compared to when initially established - some
ciphers allow a variable length IV (e.g. AES-GCM) and so it is possible that
an application will use a non-standard IV length during the use of the cipher
compared to when they initialise it
lot of applications will be affected
nonce-less key wrapping - used for key wrapping when transporting
cryptographic keys; as well as nonce-based authenticated encryption that is
resistant to nonce reuse)
relevant OpenSSL API’s should be called with an input buffer length of 0
and a NULL ptr for the output buffer - BUT if the associated data to be
authenticated was empty, in this case, OpenSSL would return success
without doing any authentication
non-empty data authentication which is the vast majority of use-cases
[USN-6165-2] GLib vulnerabilities (07:57)
[USN-6374-2] Mutt vulnerabilities (05:08)
[USN-6438-1, USN-6438-2, USN-6427-2] .NET vulnerabilities (05:15)
requests and immediately cancelling them many times over and over - exploited
in the wild recently, achieving the largest DoS attack bandwidths seen -
requires HTTP/2 implementations to essentially do heuristics over time to
track allocated streams against connections and block the connection when too
many are made or similar
[USN-6362-2] .Net regressions
[USN-6199-2] PHP vulnerability (06:31)
[USN-6403-2] libvpx vulnerabilities (06:39)
[USN-6408-2] libXpm vulnerabilities (07:00)
[USN-6448-1] Sofia-SIP vulnerability (09:01)
missing length checks in the STUN message parser -> RCE
[USN-6422-2] Ring vulnerabilities (09:17)
PJSIP - library implementing various related protocols for remote
communication like SIP, STUN, RTP, ICE and others)
[USN-6449-1] FFmpeg vulnerabilities (09:58)
in various parsers for different media types
[USN-6447-1] AOM vulnerabilities (11:32)
is used by a huge number of multimedia applications from blender, ffmpeg,
kodi, mplayer, obs-studio, vlc and more
derefs etc.
[USN-6288-2] MySQL vulnerability (12:40)
[USN-6451-1] ncurses vulnerability (12:47)
practice
[USN-6416-3] Linux kernel (Raspberry Pi) vulnerabilities (14:00)
vulnerability from Episode 207 - speculative execution attack similar to the
original Spectre
rely on CPU microcode (particularly when that microcode only covers a subset
of the affected CPUs)
[USN-6439-1, USN-6439-2] Linux kernel vulnerabilities (15:09)
[USN-6440-1, USN-6440-2] Linux kernel vulnerabilities (15:40)
[USN-6441-1, USN-6441-2] Linux kernel vulnerabilities (15:50)
[USN-6442-1] Linux kernel (BlueField) vulnerabilities
[USN-6443-1] Linux kernel (OEM) vulnerabilities (15:55)
[USN-6444-1, USN-6444-2] Linux kernel vulnerabilities (16:46)
[USN-6445-1, USN-6445-2] Linux kernel (Intel IoTG) vulnerabilities
[USN-6446-1, USN-6446-2] Linux kernel vulnerabilities
Goings on in Ubuntu Security Community
Preparation for Riga Product Roadmap Sprint, Ubuntu Summit and Engineering Sprint (17:33)
maintainers who want to be proactive about security and protecting their
users
particular Ubuntu Asahi - community project to bring the Asahi Linux work to
Ubuntu (also was a great shout-out from Joe Ressington on the most recent
Late Night Linux plus a good write-up on omgubuntu)
Goodbye and good luck to David Lane (21:31)
interacting on the snapcraft forum
Get in contact
View all episodes
By Ubuntu Security Team
4.8
1010 ratings
Overview
With the Ubuntu Summit just around the corner, we preview a couple talks by the
Ubuntu Security team, plus we look at security updates for OpenSSL, Sofia-SIP,
AOM, ncurses, the Linux kernel and more.
This week in Ubuntu Security Updates
91 unique CVEs addressed
[USN-6437-1] VIPS vulnerabilities (00:35)
[USN-6435-1] OpenSSL vulnerabilities (01:26)
raise an error - but before the error is raised it would still check other
aspects of the supplied key / parameters which in turn could use the p value
and hence take an excessive amount of time - fixed by checking this earlier
and erroring out in that case
since the size of this has to be less than p was fixed by just checking it
against this
[USN-6450-1] OpenSSL vulnerabilities
the key or IV lengths differ compared to when initially established - some
ciphers allow a variable length IV (e.g. AES-GCM) and so it is possible that
an application will use a non-standard IV length during the use of the cipher
compared to when they initialise it
lot of applications will be affected
nonce-less key wrapping - used for key wrapping when transporting
cryptographic keys; as well as nonce-based authenticated encryption that is
resistant to nonce reuse)
relevant OpenSSL API’s should be called with an input buffer length of 0
and a NULL ptr for the output buffer - BUT if the associated data to be
authenticated was empty, in this case, OpenSSL would return success
without doing any authentication
non-empty data authentication which is the vast majority of use-cases
[USN-6165-2] GLib vulnerabilities (07:57)
[USN-6374-2] Mutt vulnerabilities (05:08)
[USN-6438-1, USN-6438-2, USN-6427-2] .NET vulnerabilities (05:15)
requests and immediately cancelling them many times over and over - exploited
in the wild recently, achieving the largest DoS attack bandwidths seen -
requires HTTP/2 implementations to essentially do heuristics over time to
track allocated streams against connections and block the connection when too
many are made or similar
[USN-6362-2] .Net regressions
[USN-6199-2] PHP vulnerability (06:31)
[USN-6403-2] libvpx vulnerabilities (06:39)
[USN-6408-2] libXpm vulnerabilities (07:00)
[USN-6448-1] Sofia-SIP vulnerability (09:01)
missing length checks in the STUN message parser -> RCE
[USN-6422-2] Ring vulnerabilities (09:17)
PJSIP - library implementing various related protocols for remote
communication like SIP, STUN, RTP, ICE and others)
[USN-6449-1] FFmpeg vulnerabilities (09:58)
in various parsers for different media types
[USN-6447-1] AOM vulnerabilities (11:32)
is used by a huge number of multimedia applications from blender, ffmpeg,
kodi, mplayer, obs-studio, vlc and more
derefs etc.
[USN-6288-2] MySQL vulnerability (12:40)
[USN-6451-1] ncurses vulnerability (12:47)
practice
[USN-6416-3] Linux kernel (Raspberry Pi) vulnerabilities (14:00)
vulnerability from Episode 207 - speculative execution attack similar to the
original Spectre
rely on CPU microcode (particularly when that microcode only covers a subset
of the affected CPUs)
[USN-6439-1, USN-6439-2] Linux kernel vulnerabilities (15:09)
[USN-6440-1, USN-6440-2] Linux kernel vulnerabilities (15:40)
[USN-6441-1, USN-6441-2] Linux kernel vulnerabilities (15:50)
[USN-6442-1] Linux kernel (BlueField) vulnerabilities
[USN-6443-1] Linux kernel (OEM) vulnerabilities (15:55)
[USN-6444-1, USN-6444-2] Linux kernel vulnerabilities (16:46)
[USN-6445-1, USN-6445-2] Linux kernel (Intel IoTG) vulnerabilities
[USN-6446-1, USN-6446-2] Linux kernel vulnerabilities
Goings on in Ubuntu Security Community
Preparation for Riga Product Roadmap Sprint, Ubuntu Summit and Engineering Sprint (17:33)
maintainers who want to be proactive about security and protecting their
users
particular Ubuntu Asahi - community project to bring the Asahi Linux work to
Ubuntu (also was a great shout-out from Joe Ressington on the most recent
Late Night Linux plus a good write-up on omgubuntu)
Goodbye and good luck to David Lane (21:31)
interacting on the snapcraft forum
Get in contact