Category Around the Web

USN-3109-1: MySQL vulnerabilities

Ubuntu Security Notice USN-3109-1

25th October, 2016

mysql-5.5, mysql-5.7 vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 16.10
  • Ubuntu 16.04 LTS
  • Ubuntu 14.04 LTS
  • Ubuntu 12.04 LTS

Summary

Several security issues were fixed in MySQL.

Software description

  • mysql-5.5 – MySQL database
  • mysql-5.7 – MySQL database

Details

Multiple security issues were discovered in MySQL and this update includes
new upstream MySQL versions to fix these issues.

MySQL has been updated to 5.5.53 in Ubuntu 12.04 LTS and Ubuntu 14.04 LTS.
Ubuntu 16.04 LTS and Ubuntu 16.10 have been updated to MySQL 5.7.16.

In addition to security fixes, the updated packages contain bug fixes,
new features, and possibly incompatible changes.

Please see the following for more info...

Read More

Installing and Running a Headless Virtualization Server

In recent years, hardware virtualization has become commonplace in the computing industry and more available to end users. The idea behind it is a noble one. Why invest in allocating more server hardware and not utilize it to its full potential, when instead you can consolidate it all onto one or a few servers and share their resources?

In this article, I focus on full hardware virtualization. This refers to the creation of a virtual machine with enough simulated hardware to act like a real computer with its own operating system. In turn, this virtual machine, or virtual guest, is enabled and running on top of a host machine. The software that controls virtualization is called the hypervisor. The hypervisor runs on the host machine.

Virtualization typically is used to consolidate hardware ...

Read More

USN-3110-1: Quagga vulnerability

Ubuntu Security Notice USN-3110-1

25th October, 2016

quagga vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 16.10
  • Ubuntu 16.04 LTS
  • Ubuntu 14.04 LTS
  • Ubuntu 12.04 LTS

Summary

Quagga could be made to crash if it received specially crafted network traffic.

Software description

  • quagga – BGP/OSPF/RIP routing daemon

Details

David Lamparter discovered that Quagga incorrectly handled certain IPv6
router advertisements. A remote attacker could possibly use this issue to
cause Quagga to crash, resulting in a denial of service.

Update instructions

The problem can be corrected by updating your system to the following package version:

Ubuntu 16.10:
quagga 1.0.20160315-2ubuntu0.1
Ubuntu 16.04 LTS:
quagga 0.99.24.1-2ubuntu1.2
Ubuntu 14.04 LTS:
quagga 0.99...
Read More

How Bad Is Dirty COW?

“Dirty COW” is a serious Linux kernel vulnerability that was recently discovered to have been lurking in the code for more than nine years. It is pretty much guaranteed that if you’re using any version of Linux or Android released in the past decade, you’re vulnerable. But what is this vulnerability, exactly, and how does it work? To understand this, it’s helpful to illustrate it using a popular tourist scam.

The con

Have you ever played the game of shells? It’s traditionally played with a pea and three walnut shells — hence the name — and it is found on touristy street corners all over the world...

Read More

USN-3107-2: Linux kernel (Raspberry Pi 2) vulnerability

Ubuntu Security Notice USN-3107-2

24th October, 2016

linux-raspi2 vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 16.10

Summary

The system could be made to run programs as an administrator.

Software description

  • linux-raspi2 – Linux kernel for Raspberry Pi 2

Details

It was discovered that a race condition existed in the memory manager of
the Linux kernel when handling copy-on-write breakage of private read-only
memory mappings. A local attacker could use this to gain administrative
privileges.

Update instructions

The problem can be corrected by updating your system to the following package version:

Ubuntu 16.10:
linux-image-4.8.0-1017-raspi2 4.8.0-1017.20

To update your system, please follow these instructions: https://wiki.ubuntu...

Read More

Ubuntu 16.10 (Yakkety Yak) released and Download Link Included

Sponsored Link
Codenamed “Yakkety Yak”, Ubuntu 16.10 continues Ubuntu’s proud tradition of integrating the latest and greatest open source technologies into a high-quality, easy-to-use Linux distribution. The team has been hard at work through this cycle, introducing new features and fixing bugs.

Under the hood, there have been updates to many core packages, including a new 4.8-based kernel, a switch to gcc-6, and much more.

Ubuntu Desktop has seen incremental improvements, with newer versions of GTK and Qt, updates to major packages like Firefox and LibreOffice, and stability improvements to Unity.

Ubuntu Server 16...

Read More

Upgrade Ubuntu Desktop/Server from 16.04 (Xenial Xerus) to 16.10 (Yakkety Yak)

Sponsored Link
Codenamed “Yakkety Yak”, Ubuntu 16.10 continues Ubuntu’s proud tradition of integrating the latest and greatest open source technologies into a high-quality, easy-to-use Linux distribution. The team has been hard at work through this cycle, introducing new features and fixing bugs.

Under the hood, there have been updates to many core packages, including a new 4.8-based kernel, a switch to gcc-6, and much more.

Ubuntu Desktop has seen incremental improvements, with newer versions of GTK and Qt, updates to major packages like Firefox and LibreOffice, and stability improvements to Unity.

Upgrade Ubuntu desktop from 16.10 to 16.04

Open the “Software & Updates” Setting in System Settings.

Select the 3rd Tab called “Updates”.

Set the “Notify me of a new Ubuntu version” dropdown m...

Read More

Open-Source Budgie Desktop Sees New Release

budgie logoA new version of the open-source Budgie desktop environment has been released. 

Budgie 10.2.8 ships in Solus 1.2.1, the latest release of the Solus project’s Linux distribution. The updated desktop will be packaged for other Linux distributions, including Ubuntu, in the coming weeks.

Along with IBUS (Intelligent Input Bus) support, Budgie 10.2.8 introduces a few new or improved panel applets, including a newPlaces Indicator‘ for “quick access to a User’s Documents, Downloads, Music, etc. [and] the ability to open, mount, and unmount removable media and network shares.”

We’ve written about some similar-ish indicator applets for the Ubuntu desktop this month, so the addition of Places in Budgie is a rather timely addition!

Budgie Places Indicator

The new Places Indicator in Budgie 10.2.8

The ...

Read More

Mitigating dirtyc0w with systemd

Basic mitigation

Known exploits for the CVE-2016–5195 vulnerability involve the madvise syscall, so it’s possible to mitigate by excluding the necessary call via a systemd service or container configuration. This is easy with for a systemd unit:

 [Service] SystemCallFilter=~madvise

The tilde after the equal sign indicates that this is a blacklist of syscalls.

As with any configuration change, you’ll want to test this out before deploying it. …

Read more at David Timothy Strauss Blog

Click Here!

Let’s block ads! (Why?)

Read More

Ubuntu MATE, Not Just a Whim

I’ve stated for years how much I dislike Ubuntu’s Unity interface. Yes, it’s become more polished through the years, but it’s just not an interface that thinks the same way I do. That’s likely because I’m old and inflexible, but nevertheless, I’ve done everything I could to avoid using Unity, which usually means switching to Xubuntu. I actually really like Xubuntu, and the Xfce interface is close enough to the GNOME 2 look, that I hardly miss the way my laptop used to look before Unity.

I wasn’t alone in my disdain for Ubuntu’s flagship desktop manager switch, and many folks either switched to Xubuntu or moved to another Debian/Ubuntu-based distro like Linux Mint. The MATE desktop started as a hack, in fact, because GNOME 3 and Unity were such drastic changes...

Read More