Sign up to save your podcasts
Or
Share Episode 83
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Episode 83
Overview
This week Joe talks Linux Security Modules stacking with John Johansen and
Steve Beattie plus Alex looks at security updates for snapd, the Linux
kernel and more.
This week in Ubuntu Security Updates
24 unique CVEs addressed
[USN-4199-2] libvpx vulnerabilities [01:05]
[USN-4424-1] snapd vulnerabilities [01:38]
implementation which can forward to the real xdg-open outside the
sandbox - but would use XDG_DATA_DIRS env from the snap when launching
xdg-open outside of the snap - XDG_DATA_DIRS could then contain a
directory which the snap itself controls - allows to launch arbitrary
binaries from the snap outside of confinement
concept of loading meta-data from an external disk - so a local attacker
with physical access could alter the boot sequence - would be an issue
with FDE since could intercept the disk encryption key etc - fixed via
snapd to disable cloud-init after the first boot since cloud-init is
managed by snapd
[USN-4425-1] Linux kernel vulnerabilities [06:20]
tables via configs - provides a means of arbitrary memory write - allows
root user to bypass lockdown
[USN-4426-1] Linux kernel vulnerabilities [7:32]
variable similar to above
support - abuse mremap() to gain root privileges - requires the system to
make use of DAX storage to be able to exploit
[USN-4427-1] Linux kernel vulnerabilities [08:30]
[USN-4429-1] Evolution Data Server vulnerability [09:12]
82
STARTTLS - would allow an untrusted attacker who could intercept and
modify traffic to inject arbitrary responses that then get processed
later as though they had come from the trusted, encrypted connection to
the server - fixed in same way as mutt by clearing buffered content when
starting TLS
[USN-4430-1] Pillow vulnerabilities [10:24]
Goings on in Ubuntu Security Community
John Johansen and Steve Beattie talk Linux Security Modules with Joe [10:51]
Get in contact
View all episodes
By Ubuntu Security Team
4.8
1010 ratings
Overview
This week Joe talks Linux Security Modules stacking with John Johansen and
Steve Beattie plus Alex looks at security updates for snapd, the Linux
kernel and more.
This week in Ubuntu Security Updates
24 unique CVEs addressed
[USN-4199-2] libvpx vulnerabilities [01:05]
[USN-4424-1] snapd vulnerabilities [01:38]
implementation which can forward to the real xdg-open outside the
sandbox - but would use XDG_DATA_DIRS env from the snap when launching
xdg-open outside of the snap - XDG_DATA_DIRS could then contain a
directory which the snap itself controls - allows to launch arbitrary
binaries from the snap outside of confinement
concept of loading meta-data from an external disk - so a local attacker
with physical access could alter the boot sequence - would be an issue
with FDE since could intercept the disk encryption key etc - fixed via
snapd to disable cloud-init after the first boot since cloud-init is
managed by snapd
[USN-4425-1] Linux kernel vulnerabilities [06:20]
tables via configs - provides a means of arbitrary memory write - allows
root user to bypass lockdown
[USN-4426-1] Linux kernel vulnerabilities [7:32]
variable similar to above
support - abuse mremap() to gain root privileges - requires the system to
make use of DAX storage to be able to exploit
[USN-4427-1] Linux kernel vulnerabilities [08:30]
[USN-4429-1] Evolution Data Server vulnerability [09:12]
82
STARTTLS - would allow an untrusted attacker who could intercept and
modify traffic to inject arbitrary responses that then get processed
later as though they had come from the trusted, encrypted connection to
the server - fixed in same way as mutt by clearing buffered content when
starting TLS
[USN-4430-1] Pillow vulnerabilities [10:24]
Goings on in Ubuntu Security Community
John Johansen and Steve Beattie talk Linux Security Modules with Joe [10:51]
Get in contact