This is the audio podcast version of Troy Hunt's weekly update video published here: https://www.troyhunt.com/tag/weekly-update/
…
continue reading
Nội dung được cung cấp bởi Alex Murray and Ubuntu Security Team. Tất cả nội dung podcast bao gồm các tập, đồ họa và mô tả podcast đều được Alex Murray and Ubuntu Security Team hoặc đối tác nền tảng podcast của họ tải lên và cung cấp trực tiếp. Nếu bạn cho rằng ai đó đang sử dụng tác phẩm có bản quyền của bạn mà không có sự cho phép của bạn, bạn có thể làm theo quy trình được nêu ở đây https://vi.player.fm/legal.
Tương tự như Ubuntu Security Podcast
The director’s commentary track for Daring Fireball. Long digressions on Apple, technology, design, movies, and more.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
The award-winning WIRED UK Podcast with James Temperton and the rest of the team. Listen every week for the an informed and entertaining rundown of latest technology, science, business and culture news. New episodes every Friday.
…
continue reading
Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
This feed includes all episodes of Paul's Security Weekly, Enterprise Security Weekly, Business Security Weekly, Application Security Weekly, and Security Weekly News! Your one-stop shop for all things Security Weekly!
…
continue reading
Daily update on current cyber security threats
…
continue reading
A podcast featuring panelists of engineers from Netflix, Twitch, & Atlassian talking over drinks about all things software engineering.
…
continue reading
Hungry for Technology Talk? Get All You Can Eat at the Android Buffet
…
continue reading
Live from beautiful Bellingham Washington we capture one of the original Fests in real time. Join us live from the floor and the sessions! Live chat: https:/jblive.tv
…
continue reading
Player FM - Ứng dụng Podcast
Chuyển sang chế độ ngoại tuyến với ứng dụng Player FM !
Chuyển sang chế độ ngoại tuyến với ứng dụng Player FM !
))
Episode 132
Manage episode 303001874 series 2423058
Nội dung được cung cấp bởi Alex Murray and Ubuntu Security Team. Tất cả nội dung podcast bao gồm các tập, đồ họa và mô tả podcast đều được Alex Murray and Ubuntu Security Team hoặc đối tác nền tảng podcast của họ tải lên và cung cấp trực tiếp. Nếu bạn cho rằng ai đó đang sử dụng tác phẩm có bản quyền của bạn mà không có sự cho phép của bạn, bạn có thể làm theo quy trình được nêu ở đây https://vi.player.fm/legal.
Overview
Extended Security Maintenance gets an extension, Linux disk encryption and authentication goes under the microscope and we cover security updates for libgcrypt, the Linux kernel, Python, and more.
This week in Ubuntu Security Updates
20 unique CVEs addressed
[USN-5078-2] Squashfs-Tools vulnerabilities [01:02]
- 2 CVEs addressed in Xenial ESM (16.04 ESM)
- Episode 131
[USN-5080-1, USN-5080-2] Libgcrypt vulnerabilities [01:43]
- 2 CVEs addressed in Xenial ESM (16.04 ESM), Bionic (18.04 LTS), Focal (20.04 LTS), Hirsute (21.04)
- Side-channel attacks against the various ElGamal implementations in OpenPGP - https://eprint.iacr.org/2021/923 - researchers from IBM Research Europe
- Patent free public key encryption scheme - popular in OpenPGP - 1 in 6 registered OpenPGP keys have an ElGamal subkey
- Various implementations of ElGamal are used in different OpenPGP implementations - Go stdlib, Crypto++ and gcrypt
- libgcrypt has previously had other side-channel vulns found and was used in the development of FLUSH+RELOAD attack against GnuPG
- This attack exploits the different configurations used in the various implementations to use timing differences to be able to recover plaintext
- Fixed to remove support for smaller key lengths and add exponent blinding (combining the exponent with randomness to avoid it being inferred by timing analysis)
[USN-5071-2] Linux kernel (HWE) vulnerabilities [04:11]
- 5 CVEs addressed in Bionic (18.04 LTS)
- AMD nested virtualisation vulns (Episode 130, Episode 131)
- 2 other KVM vulns - UAF
- OOB write in joystick subsystem via a malicious
ioctl()- requires a joystick device to be present
- snaps joystick interface is not auto-connected by default
[USN-5071-3] Linux kernel (Raspberry Pi) vulnerabilities
- 2 CVEs addressed in Bionic (18.04 LTS), Focal (20.04 LTS)
[USN-5082-1] Linux kernel (OEM) vulnerabilities
- 3 CVEs addressed in Focal (20.04 LTS)
- CAN BCM UAF (Episode 121), AMD nested virtualisation
[USN-5073-2] Linux kernel (GCP) vulnerabilities
- 5 CVEs addressed in Xenial ESM (16.04 ESM), Bionic (18.04 LTS)
[USN-5073-3] Linux kernel (Raspberry Pi) vulnerabilities
- 3 CVEs addressed in Bionic (18.04 LTS)
[USN-5079-3] curl vulnerabilities [06:34]
- 3 CVEs addressed in Bionic (18.04 LTS)
- Episode 131
[USN-5081-1] Qt vulnerabilities [06:49]
- 2 CVEs addressed in Bionic (18.04 LTS)
- 2 issues in graphics / image handling
- crafted XBM trigger OOB read -> crash
- OOB write when rendering SVG or other crafted vector content
[USN-5083-1] Python vulnerabilities [07:22]
- 2 CVEs addressed in Trusty ESM (14.04 ESM), Xenial ESM (16.04 ESM)
- ReDOS - a malicious HTTP server which would send a crafted response for BasicAuth which would cause high CPU usage in trying to match the header value via a regex - fixed to use a simpler regex
- Malicious server could cause a client to hang even if the client had set a timeout - server sends a ‘100 Continue’ response and the client would sit there waiting to receive more input which would never arrive (since server is malicious)
[USN-5084-1] LibTIFF vulnerability [08:32]
- 1 CVEs addressed in Focal (20.04 LTS)
- Buffer overflow via crafted TIFF file
[USN-5079-4] curl regression [08:42]
- 2 CVEs addressed in Trusty ESM (14.04 ESM), Xenial ESM (16.04 ESM)
- Mistake in backporting patch would cause STARTTLS to fail when used for SMTP only - thanks for tuaris for metioning this on https://ubuntuforums.org/showthread.php?t=2467177 but next time please file a LP bug directly as you will get our attention much faster (and more reliably)
Goings on in Ubuntu Security Community
Authenticated boot and disk encryption on Linux [09:28]
- http://0pointer.net/blog/authenticated-boot-and-disk-encryption-on-linux.html
- systemd focused review of existing FDE in general purpose Linux distros with pointers to proposed mechanisms to implement authenticated FDE etc
- Laments lack of authenticated initrd, use of TPMs etc
- Proposal is quite different than traditional distros - immutable, authenticated
/usr, encrypted, authenticated/etc,/varand per-user/home/userencryption using their own login password
- UC20 already does TPM backed FDE with authentication
Ubuntu 14.04 and 16.04 ESM extended [14:16]
- https://ubuntu.com/blog/ubuntu-14-04-and-16-04-lifecycle-extended-to-ten-years
- Total of 10 years of support (5 LTS, 5 ESM)
| RELEASE | RELEASE DATE | END OF LIFE* |
|---|---|---|
| Ubuntu 14.04 (Trusty Tahr) | April 2014 | April 2024(from April 2022) |
| Ubuntu 16.04 (Xenial Xerus) | April 2016 | April 2026(from April 2024) |
| Ubuntu 18.04 (Bionic Beaver) | April 2018 | April 2028(unchanged) |
| Ubuntu 20.04 (Focal Fossa) | April 2020 | April 2030(unchanged) |
- Use extra time to plan upgrades
Hiring [15:48]
Linux Cryptography and Security Engineer
Security Engineer - Ubuntu
Security Product Manager
Get in contact
231 tập
Chia sẻ
Manage episode 303001874 series 2423058
Nội dung được cung cấp bởi Alex Murray and Ubuntu Security Team. Tất cả nội dung podcast bao gồm các tập, đồ họa và mô tả podcast đều được Alex Murray and Ubuntu Security Team hoặc đối tác nền tảng podcast của họ tải lên và cung cấp trực tiếp. Nếu bạn cho rằng ai đó đang sử dụng tác phẩm có bản quyền của bạn mà không có sự cho phép của bạn, bạn có thể làm theo quy trình được nêu ở đây https://vi.player.fm/legal.
Overview
Extended Security Maintenance gets an extension, Linux disk encryption and authentication goes under the microscope and we cover security updates for libgcrypt, the Linux kernel, Python, and more.
This week in Ubuntu Security Updates
20 unique CVEs addressed
[USN-5078-2] Squashfs-Tools vulnerabilities [01:02]
- 2 CVEs addressed in Xenial ESM (16.04 ESM)
- Episode 131
[USN-5080-1, USN-5080-2] Libgcrypt vulnerabilities [01:43]
- 2 CVEs addressed in Xenial ESM (16.04 ESM), Bionic (18.04 LTS), Focal (20.04 LTS), Hirsute (21.04)
- Side-channel attacks against the various ElGamal implementations in OpenPGP - https://eprint.iacr.org/2021/923 - researchers from IBM Research Europe
- Patent free public key encryption scheme - popular in OpenPGP - 1 in 6 registered OpenPGP keys have an ElGamal subkey
- Various implementations of ElGamal are used in different OpenPGP implementations - Go stdlib, Crypto++ and gcrypt
- libgcrypt has previously had other side-channel vulns found and was used in the development of FLUSH+RELOAD attack against GnuPG
- This attack exploits the different configurations used in the various implementations to use timing differences to be able to recover plaintext
- Fixed to remove support for smaller key lengths and add exponent blinding (combining the exponent with randomness to avoid it being inferred by timing analysis)
[USN-5071-2] Linux kernel (HWE) vulnerabilities [04:11]
- 5 CVEs addressed in Bionic (18.04 LTS)
- AMD nested virtualisation vulns (Episode 130, Episode 131)
- 2 other KVM vulns - UAF
- OOB write in joystick subsystem via a malicious
ioctl()- requires a joystick device to be present
- snaps joystick interface is not auto-connected by default
[USN-5071-3] Linux kernel (Raspberry Pi) vulnerabilities
- 2 CVEs addressed in Bionic (18.04 LTS), Focal (20.04 LTS)
[USN-5082-1] Linux kernel (OEM) vulnerabilities
- 3 CVEs addressed in Focal (20.04 LTS)
- CAN BCM UAF (Episode 121), AMD nested virtualisation
[USN-5073-2] Linux kernel (GCP) vulnerabilities
- 5 CVEs addressed in Xenial ESM (16.04 ESM), Bionic (18.04 LTS)
[USN-5073-3] Linux kernel (Raspberry Pi) vulnerabilities
- 3 CVEs addressed in Bionic (18.04 LTS)
[USN-5079-3] curl vulnerabilities [06:34]
- 3 CVEs addressed in Bionic (18.04 LTS)
- Episode 131
[USN-5081-1] Qt vulnerabilities [06:49]
- 2 CVEs addressed in Bionic (18.04 LTS)
- 2 issues in graphics / image handling
- crafted XBM trigger OOB read -> crash
- OOB write when rendering SVG or other crafted vector content
[USN-5083-1] Python vulnerabilities [07:22]
- 2 CVEs addressed in Trusty ESM (14.04 ESM), Xenial ESM (16.04 ESM)
- ReDOS - a malicious HTTP server which would send a crafted response for BasicAuth which would cause high CPU usage in trying to match the header value via a regex - fixed to use a simpler regex
- Malicious server could cause a client to hang even if the client had set a timeout - server sends a ‘100 Continue’ response and the client would sit there waiting to receive more input which would never arrive (since server is malicious)
[USN-5084-1] LibTIFF vulnerability [08:32]
- 1 CVEs addressed in Focal (20.04 LTS)
- Buffer overflow via crafted TIFF file
[USN-5079-4] curl regression [08:42]
- 2 CVEs addressed in Trusty ESM (14.04 ESM), Xenial ESM (16.04 ESM)
- Mistake in backporting patch would cause STARTTLS to fail when used for SMTP only - thanks for tuaris for metioning this on https://ubuntuforums.org/showthread.php?t=2467177 but next time please file a LP bug directly as you will get our attention much faster (and more reliably)
Goings on in Ubuntu Security Community
Authenticated boot and disk encryption on Linux [09:28]
- http://0pointer.net/blog/authenticated-boot-and-disk-encryption-on-linux.html
- systemd focused review of existing FDE in general purpose Linux distros with pointers to proposed mechanisms to implement authenticated FDE etc
- Laments lack of authenticated initrd, use of TPMs etc
- Proposal is quite different than traditional distros - immutable, authenticated
/usr, encrypted, authenticated/etc,/varand per-user/home/userencryption using their own login password
- UC20 already does TPM backed FDE with authentication
Ubuntu 14.04 and 16.04 ESM extended [14:16]
- https://ubuntu.com/blog/ubuntu-14-04-and-16-04-lifecycle-extended-to-ten-years
- Total of 10 years of support (5 LTS, 5 ESM)
| RELEASE | RELEASE DATE | END OF LIFE* |
|---|---|---|
| Ubuntu 14.04 (Trusty Tahr) | April 2014 | April 2024(from April 2022) |
| Ubuntu 16.04 (Xenial Xerus) | April 2016 | April 2026(from April 2024) |
| Ubuntu 18.04 (Bionic Beaver) | April 2018 | April 2028(unchanged) |
| Ubuntu 20.04 (Focal Fossa) | April 2020 | April 2030(unchanged) |
- Use extra time to plan upgrades
Hiring [15:48]
Linux Cryptography and Security Engineer
Security Engineer - Ubuntu
Security Product Manager
Get in contact
231 tập
Semua episode
×
Chào mừng bạn đến với Player FM!
Player FM đang quét trang web để tìm các podcast chất lượng cao cho bạn thưởng thức ngay bây giờ. Đây là ứng dụng podcast tốt nhất và hoạt động trên Android, iPhone và web. Đăng ký để đồng bộ các theo dõi trên tất cả thiết bị.
Tương tự như Ubuntu Security Podcast
This is the audio podcast version of Troy Hunt's weekly update video published here: https://www.troyhunt.com/tag/weekly-update/
…
continue reading
The director’s commentary track for Daring Fireball. Long digressions on Apple, technology, design, movies, and more.
…
continue reading
Android Backstage, a podcast by and for Android developers. Hosted by developers from the Android engineering team, this show covers topics of interest to Android programmers, with in-depth discussions and interviews with engineers on the Android team at Google. Subscribe to Android Developers YouTube → https://goo.gle/AndroidDevs
…
continue reading
The award-winning WIRED UK Podcast with James Temperton and the rest of the team. Listen every week for the an informed and entertaining rundown of latest technology, science, business and culture news. New episodes every Friday.
…
continue reading
Show notes are at https://stevelitchfield.com/sshow/chat.html
…
continue reading
This feed includes all episodes of Paul's Security Weekly, Enterprise Security Weekly, Business Security Weekly, Application Security Weekly, and Security Weekly News! Your one-stop shop for all things Security Weekly!
…
continue reading
Daily update on current cyber security threats
…
continue reading
A podcast featuring panelists of engineers from Netflix, Twitch, & Atlassian talking over drinks about all things software engineering.
…
continue reading
Hungry for Technology Talk? Get All You Can Eat at the Android Buffet
…
continue reading
Live from beautiful Bellingham Washington we capture one of the original Fests in real time. Join us live from the floor and the sessions! Live chat: https:/jblive.tv
…
continue reading
Player FM - Ứng dụng Podcast
Chuyển sang chế độ ngoại tuyến với ứng dụng Player FM !
Chuyển sang chế độ ngoại tuyến với ứng dụng Player FM !
