Linux Kernel Security Bugs Patched

Linux Kernel Security Bugs Patched
On Wednesday, Canonical announced that it has released new kernel patches for several Ubuntu operating systems.

The company's latest security notices mentioned six Linux kernel vulnerabilities, three that only affect Ubuntu 14.04 LTS (Trusty Tahr) users, two that affect the Ubuntu 15.10 and Ubuntu 15.10 for Raspberry Pi 2 operating systems, and one that affects both Ubuntu 14.04 LTS and Ubuntu 15.10. The most serious of these vulnerabilities was discovered by Venkatesh Pottem in Linux kernel's CXGB3 driver, which has the potential to allow a local attacker to crash the system using a denial of service or execute code. Canonical gave this bug a medium security rating. Another medium priority issue patched in the update was a Linux kernel bug that could allow a local attacker to trigger a denial of service due to the kernel incorrectly accounting file descriptors. The other bugs were considered low priority issues. All six of these bugs have been patched in this week's update, which users are urged to install immediately.

Ubuntu users can install the update via the Unity Dash. To update, users should search the Unity Dash for the Software Updater utility and allow the program to reload the software repositories and search for new drivers. Once the Software Updater has found the updates, users can simply click on the "Install All" button to install them on their machines. Since this is a kernel update, users will need to reboot their devices after the update. Canonical notes that the kernel updates have been given a new version number, which may require some users to recompile and reinstall all third party kernel modules.

Photo: © iStock.