Sign up to save your podcasts
Or
Share Episode 42
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 42
Overview
This week we have a special interview with Ubuntu Security Team member
Jamie Strandboge, talking about security aspects of the Snap packaging
system, as well as the usual roundup of security fixes from the past week.
This week in Ubuntu Security Updates
7 unique CVEs addressed
[USN-4058-2] Bash vulnerability
[USN-4049-3, USN-4049-4] GLib regression
using different API which didn’t just return a const string but allocated
it and returned it but was not freed
[USN-4086-1] Mercurial vulnerability
your local configuration or by ensuring any cloned repos don’t contain
malicious symlinks …
[USN-4087-1] BWA vulnerability
is read into a fixed sized buffer - stack buffer overflow if name too
long (code even had a note - FIXME segfault here)
[USN-4088-1] PHP vulnerability
regular expression was multi-byte but input string was not (or
vice-versa) - fix to disallow processing if either is not the same as the
other
[USN-4089-1] Rack vulnerability
application)
[USN-4090-1] PostgreSQL vulnerabilities
operators, could allow attacker to read arbitrary server memory
execute arbitrary SQL as the identity of the function owner - needs
EXECUTE permission on the function and then requires the function itself
to have inexact argument type matching otherwise will be disallowed.
Goings on in Ubuntu Security Community
Discussion with Joe McManus on Capital One breach and special guest Jamie Strandboge on snaps and security
Get in contact
View all episodes
By Ubuntu Security Team
4.8
1010 ratings
Overview
This week we have a special interview with Ubuntu Security Team member
Jamie Strandboge, talking about security aspects of the Snap packaging
system, as well as the usual roundup of security fixes from the past week.
This week in Ubuntu Security Updates
7 unique CVEs addressed
[USN-4058-2] Bash vulnerability
[USN-4049-3, USN-4049-4] GLib regression
using different API which didn’t just return a const string but allocated
it and returned it but was not freed
[USN-4086-1] Mercurial vulnerability
your local configuration or by ensuring any cloned repos don’t contain
malicious symlinks …
[USN-4087-1] BWA vulnerability
is read into a fixed sized buffer - stack buffer overflow if name too
long (code even had a note - FIXME segfault here)
[USN-4088-1] PHP vulnerability
regular expression was multi-byte but input string was not (or
vice-versa) - fix to disallow processing if either is not the same as the
other
[USN-4089-1] Rack vulnerability
application)
[USN-4090-1] PostgreSQL vulnerabilities
operators, could allow attacker to read arbitrary server memory
execute arbitrary SQL as the identity of the function owner - needs
EXECUTE permission on the function and then requires the function itself
to have inexact argument type matching otherwise will be disallowed.
Goings on in Ubuntu Security Community
Discussion with Joe McManus on Capital One breach and special guest Jamie Strandboge on snaps and security
Get in contact