Language Selection

English French German Italian Portuguese Spanish

Ubuntu plugs Linux kernel and OpenSSL holes that left users open to attack

Canonical has released several patches addressing flaws in the Linux kernel and OpenSSL that left Ubuntu users open to escalation of privilege and denial-of-service (DoS) attacks.

The most serious of the fixes covers a variety of flaws that could be used to gain elevated or administrative privileges on the victim machine.

"A memory corruption issue was discovered in AES decryption when using the Intel AES-NI accelerated code path. A remote attacker could exploit this flaw to cause a DoS (system crash) or potentially escalate privileges on Intel-based machines," read the Ubuntu security advisory.

Read more

Also: A Couple of CUPS Exploits Have Been Closed in Ubuntu

Ubuntu Releases Security Update