Sign up to save your podcasts
Or
Share Episode 70
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 70
Overview
This week we have a great interview between Joe McManus and Emilia Torino from the Ubuntu
Security team, plus we cover security updates for Apport, Firefox, GnuTLS,
the Linux kernel and more.
This week in Ubuntu Security Updates
18 unique CVEs addressed
[USN-4315-1] Apport vulnerabilities [00:32]
location - so a local attacker could create a symlink in it’s place to a
non-existant file in a root-owned location and Apport would end up
creating that file but with world-writable permissions - so could be used
to possibly escalate privileges say by dropping a new cron file or
similar.
and then changes permissions on crash report to be owned by the user -
again using a symlink attack it could be possible to get Apport to change
the permissions on an arbitrary file to be readable by a regular user and
hence disclose sensitive information. Is generally mitigated by
protected_symlinks setting.
[USN-4316-1, USN-4316-2] GD Graphics Library vulnerabilities [02:46]
image creation -> info leak or possible memory corruption
[USN-4317-1] Firefox vulnerabilities [03:10]
wild - https://www.mozilla.org/en-US/security/advisories/mfsa2020-11/
[USN-4321-1] HAProxy vulnerability [03:56]
compression) -> crash, DoS or possible RCE
[USN-4322-1] GnuTLS vulnerability [04:35]
DTLS client - so breaks the security guarantees of DTLS
(datagram-TLS). Introduced in a code change which changed a boolean OR to
and AND without inverting the logic (ie De Morgan)
[USN-4323-1] Firefox vulnerabilities [05:28]
sequences
[USN-4318-1] Linux kernel vulnerabilities [06:18]
the journal size
[USN-4319-1, USN-4325-1] Linux kernel vulnerabilities [07:22]
[USN-4320-1] Linux kernel vulnerability [08:08]
[USN-4324-1] Linux kernel vulnerabilities [08:33]
Goings on in Ubuntu Security Community
Joe talks with Ubuntu Security Team member Emilia Torino [09:06]
Uncompressed OVAL data being discontinued on 1st May [24:25]
redundant and too large to be useful in general
Get in contact
View all episodes
By Ubuntu Security Team
4.8
1010 ratings
Overview
This week we have a great interview between Joe McManus and Emilia Torino from the Ubuntu
Security team, plus we cover security updates for Apport, Firefox, GnuTLS,
the Linux kernel and more.
This week in Ubuntu Security Updates
18 unique CVEs addressed
[USN-4315-1] Apport vulnerabilities [00:32]
location - so a local attacker could create a symlink in it’s place to a
non-existant file in a root-owned location and Apport would end up
creating that file but with world-writable permissions - so could be used
to possibly escalate privileges say by dropping a new cron file or
similar.
and then changes permissions on crash report to be owned by the user -
again using a symlink attack it could be possible to get Apport to change
the permissions on an arbitrary file to be readable by a regular user and
hence disclose sensitive information. Is generally mitigated by
protected_symlinks setting.
[USN-4316-1, USN-4316-2] GD Graphics Library vulnerabilities [02:46]
image creation -> info leak or possible memory corruption
[USN-4317-1] Firefox vulnerabilities [03:10]
wild - https://www.mozilla.org/en-US/security/advisories/mfsa2020-11/
[USN-4321-1] HAProxy vulnerability [03:56]
compression) -> crash, DoS or possible RCE
[USN-4322-1] GnuTLS vulnerability [04:35]
DTLS client - so breaks the security guarantees of DTLS
(datagram-TLS). Introduced in a code change which changed a boolean OR to
and AND without inverting the logic (ie De Morgan)
[USN-4323-1] Firefox vulnerabilities [05:28]
sequences
[USN-4318-1] Linux kernel vulnerabilities [06:18]
the journal size
[USN-4319-1, USN-4325-1] Linux kernel vulnerabilities [07:22]
[USN-4320-1] Linux kernel vulnerability [08:08]
[USN-4324-1] Linux kernel vulnerabilities [08:33]
Goings on in Ubuntu Security Community
Joe talks with Ubuntu Security Team member Emilia Torino [09:06]
Uncompressed OVAL data being discontinued on 1st May [24:25]
redundant and too large to be useful in general
Get in contact