Sign up to save your podcasts
Or
Share Episode 24
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 24
Overview
A look at recent fixes for vulnerabilities in poppler, WALinuxAgent, the
Linux kernel and more. We also talk about some listener feedback on
Ubuntu hardening and the launch of Ubuntu 14.04 ESM.
This week in Ubuntu Security Updates
18 unique CVEs addressed
[USN-3905-1] poppler vulnerability
write into heap memory which preceeds the intended buffer - heap
corruption - crash -> DoS, possible code execution
[USN-3906-1] LibTIFF vulnerabilities
[USN-3907-1] WALinuxAgent vulnerability
distributions) running on Azure
were in memory that got swapped to disk could be read by all
permissions on any existing swapfile as well
[USN-3902-2] PHP vulnerabilities
now for Precise ESM as well
[USN-3910-1, USN-3910-2] Linux kernel vulnerabilities
time, DoS via mmaping a FUSE-backed file into processes memory
containing command-line args)
integer overflow from large pgoff parameter to remap_file_pages() when
used in conjuction with an existing mmap() -> crash -> DoS
read a descriptor from the USB device as a u8 and then index into an
array with this without checking whether it fell within the array
option
[USN-3908-1, USN-3908-2] Linux kernel vulnerability
Trusty kernel (and the Trusty HWE kernel backported to Precise ESM)
[USN-3909-1] libvirt vulnerability
(say guest is being shutdown) - crash host libvirt -> DoS
Goings on in Ubuntu Security Community
Ubuntu Hardening Response
various improvements which allow this to be used to check the
various Ubuntu kernel configurations
Extended Security Maintenance for Ubuntu 14.04 (Trusty Tahr) begins April 25 2019
Hiring
Ubuntu Security Generalist
Robotics Security Engineer
Get in contact
View all episodes
By Ubuntu Security Team
4.8
1010 ratings
Overview
A look at recent fixes for vulnerabilities in poppler, WALinuxAgent, the
Linux kernel and more. We also talk about some listener feedback on
Ubuntu hardening and the launch of Ubuntu 14.04 ESM.
This week in Ubuntu Security Updates
18 unique CVEs addressed
[USN-3905-1] poppler vulnerability
write into heap memory which preceeds the intended buffer - heap
corruption - crash -> DoS, possible code execution
[USN-3906-1] LibTIFF vulnerabilities
[USN-3907-1] WALinuxAgent vulnerability
distributions) running on Azure
were in memory that got swapped to disk could be read by all
permissions on any existing swapfile as well
[USN-3902-2] PHP vulnerabilities
now for Precise ESM as well
[USN-3910-1, USN-3910-2] Linux kernel vulnerabilities
time, DoS via mmaping a FUSE-backed file into processes memory
containing command-line args)
integer overflow from large pgoff parameter to remap_file_pages() when
used in conjuction with an existing mmap() -> crash -> DoS
read a descriptor from the USB device as a u8 and then index into an
array with this without checking whether it fell within the array
option
[USN-3908-1, USN-3908-2] Linux kernel vulnerability
Trusty kernel (and the Trusty HWE kernel backported to Precise ESM)
[USN-3909-1] libvirt vulnerability
(say guest is being shutdown) - crash host libvirt -> DoS
Goings on in Ubuntu Security Community
Ubuntu Hardening Response
various improvements which allow this to be used to check the
various Ubuntu kernel configurations
Extended Security Maintenance for Ubuntu 14.04 (Trusty Tahr) begins April 25 2019
Hiring
Ubuntu Security Generalist
Robotics Security Engineer
Get in contact