Major kernel security updates in Ubuntu 14.04, fixing 26 Security Vulnerabilities

Source: Internet
Author: User

Major kernel security updates in Ubuntu 14.04, fixing 26 Security Vulnerabilities

Canonical released a major kernel Security Update for the Ubuntu 14.04 LTS (Trusty Tahr) Operating System Series today, solving more than 20 vulnerabilities and other problems.

In today's Ubuntu 14.04 LTS System and derivative Kernel updates, a total of 26 security defects were fixed, including the F2F (Flash-Friendly File System) of the Linux kernel) out-of-bounds Write Vulnerability in the file system, defects in the release of the alsa pcm subsystem in the Linux kernel, and QLogic 24xx + series SCSI drivers in the sysfs interface of the Linux kernel.

In addition, the kernel update addresses the release vulnerability in the Linux Kernel SCTP protocol implementation, the contention in the lego usb Infrared Tower driver, and the free use vulnerability in the USB serial console driver, they allow an attacker physically close to attackers to execute arbitrary code or cause DoS attacks to the system.

Other vulnerabilities fixed include: Post-Release vulnerability in netfilter xt_TCPMSS filter, integer overflow vulnerability in IPv6 implementation, and post-release vulnerability in DCCP, the implementation of the Reliable datainsocket protocol in RDS and the existence of competition conditions in the implementation of cyclic block devices.

Linux Kernel KVM implementation, netlink Wireless Configuration interface, SCSI subsystem, key management subsystem, Memory Manager, ATI Radeon frame buffer driver, iSCSI transmission implementation, Bluetooth Network Encapsulation Protocol (BNEP) implementation, HMAC implementation: shm IPC subsystem and netfilter passive OS fingerprint recognition (xt_osf) module.

In addition to the preceding security vulnerabilities, today's kernel update also mitigates the Meltdown security vulnerability in the PPC64el (PowerPC 64-bit Little Endian) architecture in the Ubuntu 14.04 LTS system. All Ubuntu 14.04 LTS (Trusty Tahr) users are urged to install and update it to the linux-image 3.13.0.142.152 kernel package on 64-bit, 32-bit, PPC64el and PPC systems as soon as possible.

Kernel update is also applicable to Ubuntu 14.04 ESM (extended security maintenance) users who use the Trusty HWE (hardware enabled) kernel in Ubuntu 12.04 LTS. If you use Ubuntu 14.04.5 LTS with Xenial HWE kernel, you need to update Ubuntu 16.04 LTS (Xenial Xerus) of the corresponding kernel version released two days ago ).

Https://www.bkjia.com/topicnews.aspx? Tid = 2

This article permanently updates link: https://www.bkjia.com/Linux/2018-02/151055.htm

Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.