Sunday, August 14, 2022
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory
  • Login
  • Register
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
No Result
View All Result
Cloud7 News
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
No Result
View All Result
Cloud7 News
No Result
View All Result

Home > Linux > Canonical published Linux Kernel security updates for Ubuntu

Canonical published Linux Kernel security updates for Ubuntu

Canonical released new Linux Kernel security updates that fixes more than 30 vulnerabilities for all supported Ubuntu releases.


Erdem Yasar Erdem Yasar
June 9, 2022
2 min read
Canonical published Linux Kernel security updates for Ubuntu

Canonical, developer of Ubuntu, published Linux Kernel updates addressing over 30 vulnerabilities. The updates came two weeks after the previous updates, which addressed three minor security flaws. The massive update is currently available for all supported Ubuntu releases, Ubuntu 22.04 LTS (Jammy Jellyfish), Ubuntu 21.10 (Impish Indri), Ubuntu 20.04 LTS (Focal Fossa), Ubuntu 18.04 LTS (Bionic Beaver), Ubuntu 16.04 and 14.04 ESM.

More than 30 vulnerabilities

The most notable vulnerabilities fixed in the update are:

  • CVE-2022-1966: A use-after-free vulnerability was found in the Linux kernel’s Netfilter subsystem in net/netfilter/nf_tables_api.c. This flaw allows a local attacker with user access to cause a privilege escalation issue. The vulnerability was found in all Ubuntu releases. It allows a local attacker to cause a denial of service or execute arbitrary code.
  • CVE-2022-21499: The vulnerability caused by the Linux kernel did not properly restrict access to the kernel debugger when booted in secure boot environments. A privileged attacker could use this to bypass UEFI Secure Boot restrictions.

Along with these two high severity vulnerabilities, the update patches also multiple medium severity flaws. Some of them are:

  • CVE-2022-1158: The medium severity vulnerability is caused by the KVM implementation in the Linux kernel did not properly perform guest page table updates in some situations. The vulnerability can cause an attacker in a guest virtual machine to exploit this flaw to crash the host operating system.
  • CVE-2021-1011: The vulnerability is a use-after-free flaw that was found in the Linux kernel’s FUSE filesystem in the way a user triggers write(). It allows a local user to gain unauthorized access to data from the FUSE filesystem, resulting in privilege escalation. It can cause a denial of service or execute arbitrary code.
  • CVE-2022-1972: It is an out-of-bound write vulnerability was identified within the netfilter subsystem which can be exploited to achieve privilege escalation to root. It is caused by the Linux kernel did not properly validate sets with multiple ranged fields. It can allow a local attacker to cause a denial of service or execute arbitrary code.

While some of those flaws affect only some versions, some of them can affect all Ubuntu versions. Since it is a security update, Canonical urged all users to update their operating systems as soon as possible to be able to avoid possible attacks. Users can use the Software Updater utility or run the following command in the Terminal.

sudo apt update
sudo apt full-upgrade

Installing new kernel versions requires a system reboot.

See more Linux News


Tags: Canonical LtdUbuntu

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

I agree to the Terms & Conditions and Privacy Policy.

Next Post
Digital Realty CTO Chris Sharp joins board of FiberSense

Digital Realty CTO Chris Sharp joins board of FiberSense

Related News

snap app of the week motrix

Snap app of the week: Motrix

August 13, 2022 1:00 pm
Ubuntu 22.04.1 is now available for download after a little delay

Ubuntu 22.04.1 is now available for download after a little delay

August 12, 2022 7:35 pm
Kali Linux 2022.3 is available with five new tools

Kali Linux 2022.3 is available for download, delivering five new tools

August 11, 2022 3:05 pm
Rescuezilla-2.4-released

Rescuezilla 2.4 released with fixes and enhancements

August 9, 2022 5:25 pm
Get free daily newsletters from Cloud7 News Get the Cloud7 Newsletter

Check your inbox or spam folder to confirm your subscription.

By subscribing, you agree to our
Copyright Policy and Privacy Policy

Get the Cloud7 Newsletter

Sign up for the Cloud7 Newsletter to receive the latest IT business updates straight to your inbox daily.

Check your inbox or spam folder to confirm your subscription.

Editor's Choice

Interview with Igor Seletskiy on AlmaLinux

7 best hosting control panels

How to update Linux Kernel without rebooting?

7 best Linux mail servers for 2022

7 best cPanel alternatives for 2022

7 best Linux web browsers for 2022

7 best CentOS alternatives

7 best Linux server distros for 2022

How to scan your server for Log4j (Log4Shell) vulnerability

10 Best Web Hosting Services of 2022

AlmaLinux 8.6 Stable is ready to download

Ubuntu 22.04 LTS is available for download. What is new?

Kali Linux 2022.2 is ready for download

Recent News

  • [Event] Cyber Security Workshop for Financial Planners
  • Tencent Cloud teams up with Acclivis
  • Granulate to launch a free solution for autonomous Kubernetes
  • Lincoln Rackhouse & Principal Real Estate Investors acquire Atlanta DC
  • 20i launches WordPress Manager for their customers


Cloud7 is a news source that publishes the latest news, reviews, comparisons, opinions, and exclusive interviews to help tech users of high-experience levels in the IT industry.

EXPLORE

  • Web Hosting
  • Cloud Computing
  • Data Center
  • Cybersecurity
  • Linux
  • Network/Internet
  • Software
  • Hardware
  • How-Tos
  • Troubleshooting

RESOURCES

  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

Get the Cloud7 Newsletter

Get FREE daily newsletters from Cloud7 delivering the latest news and reviews.

  • About
  • Privacy & Policy
  • Copyright Policy
  • Contact

© 2022, Cloud7 News. All rights reserved.

No Result
View All Result
  • Cloud Computing
  • Web Hosting
  • Data Center
  • Linux
  • Cybersecurity
  • More
    • Network/Internet
    • Windows
    • Software
    • Hardware
    • Blockchain
    • Policy/Legislation
    • How-Tos
    • Troubleshooting
  • Events
  • Interviews
  • Jobs
  • Opinion
  • Whitepapers
  • Glossary
  • Community Forum
  • Web Hosting Directory

© 2022, Cloud7 News. All rights reserved.

Welcome Back!

Sign In with Facebook
Sign In with Google
Sign In with Linked In
OR

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Sign Up with Facebook
Sign Up with Google
Sign Up with Linked In
OR

Fill the forms below to register

*By registering into our website, you agree to the Terms & Conditions and Privacy Policy.
All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.