Canonical released new updates fixing Kernel,Perl and Apache vulnerabilities


Major updates were released to fix the vulnerabilities,patching Linux Kernel,Perl and Apache HTTP server.

Linux Kernel vulnerability:-

A failure to validate input was discovered in the Linux kernel’s Xen netback (network backend) driver. A user in a guest OS may exploit this flaw to cause a denial of service to the guest OS and other guest domains.

Apache HTTP Server vulnerability:-

if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the
contents, or steal confidential data (such as passwords), within the same domain.

pam-xdg-support vulnerability:-

A local attacker could use this issue in combination with administrative command(sudo) to possibly escalate privileges.

Perl vulnerability :-

An attacker could use this flaw to perform a denial of service attack against software written in Perl.

The updates can be installed by following the instruction on security upgrades.

Source :- Canonical

Advertisements