Last Tuesday, Canonical He launched an Ubuntu kernel update for all versions still supported. Today, a few hours ago, the company that Mark Shuttleworth runs launched a new Live patch (Live Patch) for the last two LTS versions of the operating system you develop, that is, Ubuntu 18.04 Bionic Beaver and Ubuntu 16.04 Xenial Xerus. The reason for this release relates to the newly discovered DoS (Denial of Service) vulnerabilities.
Unlike the one released earlier this week, the one released today is aimed solely and exclusively at Bionic Beaver and Xenual Xerus, the only ones that support the Live Patch feature. For those who do not know, these are patches that do not require a restart, but this is only possible on supported operating systems. LivePatch It was a feature that should have come to Disco Dingo but even though there is a shortcut / app, Canonical backtracked at the last minute.
LTS versions of Ubuntu receive a Live Patch
Canonical took two days to release the Live version of these patches. These are the same ones that we published yesterday, but with the aforementioned difference that they do not require a restart. Like those released Tuesday, these patches also fix vulnerabilities CVE-2019-11477 y CVE-2019-11478 discovered by Jonathan Looney that could allow a remote user to cause an unexpected shutdown (crash) of the operating system causing denial of service. The first of the two is also known as SACK Panic.
As usual, Canonical recommends all Ubuntu 18.04 and Ubuntu 16.04 users to update as soon as possible… If they hadn't already updated. Supposedly, only those who have the option activated from the settings will receive these patches, something that is worth it if our team has to be working day and night. Are you one of them?
These patches are applicable for all those distributions derived from Ubuntu?
In my case, linux mint.