As we all know, versions of Ubuntu LTS are those that receive long-term support. And is that recently, Canonical has launched several kernel updates for Ubuntu 12.04 LTS and Ubuntu 14.04 LTS versions, so if you are still using these versions, this article will interest you.
The updates have basically focused on correct vulnerabilities which affected these two versions and their derivatives. Among other things, the most notable changes have been to the kernel Netfilter, which did not properly handle compatibility with 32-bit systems at events IPT_SO_SET_REPLACE in 64 bits. If you want to know more changes, we encourage you to read the full article.
In addition to the corrected vulnerability in the management of iptables that we just mentioned, several vulnerabilities have been fixed more, which we can read in the official statement of Ubuntu.
One of the most common errors that have been corrected has been several loss of information from the kernel. For example, Kangjie Lu discovered one loss of information in the implementation of the USB lesson in Linux, which meant that any local attacker could take advantage of this vulnerability to obtain sensitive information about kernel memory.
In addition, Jann Horn also discovered that someone could force InfiniBand interfaces of the kernel to overwrite memory of the same. Again, a privileged local attacker could take advantage of such a vulnerability, and gain administrator privileges on systems where InfiniteBand-related modules have been loaded.
Another memory loss that has been corrected, has been in the implementation of the Rock Ridge of the core. Rock Ridge is a extension of the ISO 9660 standard, which defines the file systems on CDs and adds support for POSIX-type systems. And is that until now, any user could mount an ISO 9660 file system for malicious purposes and obtain sensitive information from the kernel memory.
Updating the kernel
As we are informed in the official statement, all these problems can be solved by updating the kernel of our Ubuntu (12.04 LTS or 14.04 LTS) to the versions you can see listed at the end of it official statement.
Also, we can look for the application of Software Updates, Wait for the available updates to be found, and click install All. To apply the changes, you will need to reboot your system.
We hope this article has helped you and that if you are still using the versions of Ubuntu 12.04 LTS or Ubuntu 14.04 LTS, please update as fast as possible, Otherwise your PC will be exposed to the vulnerabilities we mentioned.