Major kernel security updates in Ubuntu 14.04, fixing 26 Security Vulnerabilities
Canonical released a major kernel Security Update for the Ubuntu 14.04 LTS (Trusty Tahr) Operating System Series today, solving more than 20 vulnerabilities and other problems.
In today's Ubuntu 14.04 LTS System and derivative Kernel updates, a total of 26 security defects were fixed, including the F2F (Flash-Friendly File System) of the Linux kernel) out-of-bounds Write Vulnerability in the file system, defects in the release of the alsa pcm subsystem in the Linux kernel, and QLogic 24xx + series SCSI drivers in the sysfs interface of the Linux kernel.
In addition, the kernel update addresses the release vulnerability in the Linux Kernel SCTP protocol implementation, the contention in the lego usb Infrared Tower driver, and the free use vulnerability in the USB serial console driver, they allow an attacker physically close to attackers to execute arbitrary code or cause DoS attacks to the system.
Other vulnerabilities fixed include: Post-Release vulnerability in netfilter xt_TCPMSS filter, integer overflow vulnerability in IPv6 implementation, and post-release vulnerability in DCCP, the implementation of the Reliable datainsocket protocol in RDS and the existence of competition conditions in the implementation of cyclic block devices.
Linux Kernel KVM implementation, netlink Wireless Configuration interface, SCSI subsystem, key management subsystem, Memory Manager, ATI Radeon frame buffer driver, iSCSI transmission implementation, Bluetooth Network Encapsulation Protocol (BNEP) implementation, HMAC implementation: shm IPC subsystem and netfilter passive OS fingerprint recognition (xt_osf) module.
In addition to the preceding security vulnerabilities, today's kernel update also mitigates the Meltdown security vulnerability in the PPC64el (PowerPC 64-bit Little Endian) architecture in the Ubuntu 14.04 LTS system. All Ubuntu 14.04 LTS (Trusty Tahr) users are urged to install and update it to the linux-image 3.13.0.142.152 kernel package on 64-bit, 32-bit, PPC64el and PPC systems as soon as possible.
Kernel update is also applicable to Ubuntu 14.04 ESM (extended security maintenance) users who use the Trusty HWE (hardware enabled) kernel in Ubuntu 12.04 LTS. If you use Ubuntu 14.04.5 LTS with Xenial HWE kernel, you need to update Ubuntu 16.04 LTS (Xenial Xerus) of the corresponding kernel version released two days ago ).
Https://www.bkjia.com/topicnews.aspx? Tid = 2
This article permanently updates link: https://www.bkjia.com/Linux/2018-02/151055.htm
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
