Overview
This week Joe discusses Ubuntu’s involvement in ZDI’s Pwn2Own with special
guests Steve Beattie and Marc Deslauriers from the Ubuntu Security team,
plus we do the usual roundup of fixed vulnerabilities including libssh,
Thunderbird, Git and a kernel Livepatch.
This week in Ubuntu Security Updates
38 unique CVEs addressed
[USN-4325-1] Linux kernel vulnerabilities [00:59]
- 2 CVEs addressed in Bionic
- 5.0 (bionic clouds / oem - oracle, gke, gcp, azure, etc)
- VFS UAF and IPMI memory leak - Episode 70
[USN-4326-1] libiberty vulnerabilities [01:46]
- 14 CVEs addressed in Xenial, Bionic
- libib - collection of subroutines used by other libraries / applications
- primarily binutils for parsing binary formats (ELF executables etc)
- Mostly low priority issues (DoS via memory leak / NULL ptr dereference in
say objdump etc)
- 1 medium - integer overflow -> heap buffer overflow in parsing a crafted
ELF file
[USN-4327-1] libssh vulnerability [02:57]
- 1 CVEs addressed in Bionic, Eoan
- Malicious client / server could crash other end when using AES-CTR
ciphers - error in memory handling on cleanup of cipher context when
closing the connection -> DoS
[LSN-0065-1] Linux kernel vulnerability [03:41]
- 3 CVEs addressed in Xenial, Bionic
- Livepatch for VFS UAF, fix a possible SpectreV1/L1TF gadget introduced
back in 2013 for a KVM IOAPIC issue, KVM TLB flush (Episode 67)
[USN-4328-1] Thunderbird vulnerabilities [04:31]
- 18 CVEs addressed in Bionic, Eoan
- 68.7.0
- Includes various fixes for issues previously covered in Firefox updates
[USN-4329-1] Git vulnerability [05:11]
- 1 CVEs addressed in Xenial, Bionic, Eoan
- Would not properly handle URLs that include newlines - and would possibly
send credentials to the wrong host as a result - fixed by forbidding a
newline in any part of credential handling
Goings on in Ubuntu Security Community
Joe discusses Ubuntu’s participation in ZDI’s Pwn2Own with Steve Beattie and Marc Deslauriers [06:25]
Get in contact