Canonical also released security patches yesterday, in your case for the Ubuntu kernel

Linux Kernel 5.0.0-17

Between yesterday and today, working with Ubuntu is a bit more secure. Today we have talked to you about Firefox 67.0.3 release, a new version that has arrived to correct a critical security flaw that, according to Mozilla itself, they had been exploiting. Hours before, Canonical released an Ubuntu kernel update, but it has not been until now that we have known the reason for that launch. As you can guess from how we started this article, it has to do with security.

Specifically, what they have corrected are the vulnerabilities CVE-2019-11477 y CVE-2019-11478, which affect the iImplementation of the TCP retransmission queue by handling some specific SACKs. Both flaws were discovered by Jonathan Looney and could allow a remote malicious user to cause a shutdown to the affected system causing denial of service. This is known as SACK Panic and affects all supported Ubuntu family versions.

Yesterday's kernel update arrived to fix security flaws

Whenever they release security patches, Canonical, like any other responsible company, recommends updating as soon as possible. On other occasions I say yes, you have to update, but you don't have to go crazy because you need physical access to the computer to exploit the bugs. In this case I'm not going to turn on all the alarms either, but taking into account that the failure can be exploited remotely and how little it costs to open the update software in any X-buntu, I will say that you do, that we will be protected in a few minutes ( after reboot).

Canonical says that Affected systems are Ubuntu 19.04, Ubuntu 18.10, Ubuntu 18.04 and Ubuntu 16.04, but all unsupported systems are affected as well. I comment on this because, for example in snapcraft.io, you can see that there are still many users using, for example, Ubuntu 17.10. I would recommend updating to the latest LTS or Disco Dingo version for those users. They do not mention anything about Eoan Ermine, but it would also be affected. Whatever X-buntu you use, update now.


Be the first to comment

Leave a Comment

Your email address will not be published. Required fields are marked with *

*

*

  1. Responsible for the data: Miguel Ángel Gatón
  2. Purpose of the data: Control SPAM, comment management.
  3. Legitimation: Your consent
  4. Communication of the data: The data will not be communicated to third parties except by legal obligation.
  5. Data storage: Database hosted by Occentus Networks (EU)
  6. Rights: At any time you can limit, recover and delete your information.