Language Selection

English French German Italian Portuguese Spanish

Newly Discovered Kernel Vulnerabilities Affect All Ubuntu Users

Filed under
Security

Yesterday, November 27th, the Ubuntu developers discovered yet another security issue (actually, more than one) in the Linux kernel packages. These vulnerabilities affect the following Ubuntu distributions: 6.06 LTS, 7.10, 8.04 LTS and 8.10 (also applies to Kubuntu, Edubuntu and Xubuntu). The truth is that there are exactly nine (yes, 9) security issues (see below for details), therefore, it is strongly recommended to update your system as soon as possible!

The Ubuntu developers discovered that:

1. The Xen hypervisor block driver couldn't accurately validate incoming requests. Therefore, a user with root privileges could crash a system and cause a DoS (Denial of Service) attack by executing malicious I/O requests. This issue affects only Ubuntu 7.10.

2. The i915 video driver couldn't accurately validate memory addresses. Therefore, an attacker could remap memory and cause a system crash, leading to a DoS (Denial of Service) attack. Ubuntu 6.06 LTS, 7.10 and 8.04 LTS users are not affected by this issue. Ubuntu 8.10 users should update their systems to correct this vulnerability!

More Here




More in Tux Machines

FreeNAS, World’s Most Popular Storage OS, Gets AMD Ryzen Support, Cloud Sync

Coming six months after the release of the FreeNAS 11 stable series, the FreeNAS 11.1 update is based on FreeBSD 11.1 and introduces cloud integration, support for AMD Ryzen and Intel Xeon Scalable family of processors, OpenZFS performance improvements, as well as preliminary support for Docker application container engine through a virtual machine built from RancherOS. "FreeNAS 11.1 adds a cloud sync (data import/export to the cloud) feature," reads the announcement. "This new feature lets you sync (similar to backup), move (erase from source), or copy (only changed data) data to and from public cloud providers that include Amazon S3 (Simple Storage Services), Backblaze B2 Cloud, Google Cloud, and Microsoft Azure." Read more

Amazon Linux 2 Benchmarks, 6-Way Linux OS EC2 Compute Cloud Comparison

With Amazon AWS this week having released Amazon Linux 2 LTS I was excited to put this updated cloud-focused operating system through some performance tests to see how it stacks up with the more well known Linux distributions. Read more

Open Source “PiTalk” Turns Your Raspberry Pi Minicomputer Into A Modular Smartphone

More than a year ago, I wrote about a Raspberry Pi-powered phone called PiPhone, and the readers loved it. Just recently, I came across another similar project on Kickstarter and decided to share it on Fossbytes. Named PiTalk, the project calls itself the “first ever DIY modular smartphone.” Powered by Python, PiTalk modular smartphone is compatible with Raspberry Pi Zero, Pi 2, and Pi 3. For voice and data communication, it has a 3G module. The basic features performed by PiTalk are: Read more

antiX MX-17 Linux OS Brings Latest Debian GNU/Linux 9.3 "Stretch" Updates

Powered by Linux kernel 4.13 and using Xfce 4.12.3 as default desktop environment, antiX MX-17 comes six months after the antiX MX-16 release and promises to bring all the latest security patches and software update from the software repositories of the recently released Debian GNU/Linux 9.3 "Stretch" operating system. The MX variant ships with all the antiX live features, including persistence up to 20GB, and automatic selection of appropriate drivers for most Broadcom wireless chipsets with minimal user intervention. Being targeted at low-end computers, antiX MX-17 offers a 32-bit PAE kernel for machines with less than 4GB RAM. Read more