Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Security Team Weekly Summary: October 12, 2017

Canonical

on 12 October 2017

Tags: livepatch , Public cloud , Security , USN

This article is more than 6 years old.

The Security Team weekly reports are intended to be very short summaries of the Security Team’s weekly activities.

If you would like to reach the Security Team, you can find us at the #ubuntu-hardened channel on FreeNode. Alternatively, you can mail the Ubuntu Hardened mailing list at: ubuntu-hardened@lists.ubuntu.com

During the last week, the Ubuntu Security team:

  • Triaged 238 public security vulnerability reports, retaining the 75 that applied to Ubuntu.
  • Published 12 Ubuntu Security Notices which fixed 43 security issues (CVEs) across 9 supported packages.

Ubuntu Security Notices

Bug Triage

Mainline Inclusion Requests

Updates to Community Supported Packages

  • Simon Quigley (tsimonq2) provided debdiffs for trusty-artful for git (LP: #1719740)

Development

  • Reviews:
    • PR 3973/cgroup freezer in support of layouts
    • PR 3998/utilize new seccomp logging features
    • PR 3999/add detection of stale mount namespaces for layouts
    • PR 3872/preserve TMPDIR and HOSTALIASES across snap-confine invocation
    • PR 3958/add support for /home on NFS
    • PR 4008/create missing mountpoints in support of layouts
  • submitted policy-updates-xxx PR 4002
  • submitted small lttng PR 4003
  • submitted small lxd PR 4004
  • fscrypt 0.2.1 and 0.2.2 packaged

  • libseccomp patches rebased to latest

What the Security Team is Reading This Week

Weekly Meeting

More Info

cloud icon

Ubuntu on public clouds

There is no one size fits all cloud architecture.
Developing the optimum cloud strategy requires evaluating your business needs and aligning them with the different solutions available.

Find out which cloud suits you best ›

Newsletter signup

Get the latest Ubuntu news and updates in your inbox.

By submitting this form, I confirm that I have read and agree to Canonical's Privacy Policy.

Related posts

Ubuntu Explained: How to ensure security and stability in cloud instances—part 3

Applying updates across a fleet of multiple Ubuntu instances is a balance of security and service uptime. We explore best practices to maximise stability.

Ubuntu Explained: How to ensure security and stability in cloud instances—part 2

You probably know that it is important to apply security updates. You may not be clear how to do that. We are going to explain best practices for applying...

Securing open source software dependencies in the public cloud

Building stable and secure software requires understanding build systems and having a plan for vulnerabilities in your software dependencies.