Tux Machines

Canonical Issues New Ubuntu Kernel Updates to Fix Two Local Privilege Escalation Flaws

Posted by Marius Nestor on Apr 26, 2023

=> GCC 13.1 Released (UPDATED) | GNOME 44.1 Improves Screencast Support, Quick Settings, Background Apps, and More

=> ↺ Ubuntu kernel updates

The first vulnerability patched in this new Ubuntu kernel update is CVE-2023-1829, a flaw discovered in the Traffic-Control Index (TCINDEX) implementation that could allow a local attacker to elevate its privileges to root. Canonical notes the fact that to actually fix this flaw, they had to remove kernel support for the TCINDEX classifier.

The second local privilege escalation vulnerability affecting the aforementioned Ubuntu releases is CVE-2023-0386, a flaw discovered in the OverlayFS file system implementation that could allow a local attacker to escalate their privileges on the vulnerable system.

Read on

=> ↺ Read on

=> gemini.tuxmachines.org

Proxy Information
Original URL
gemini://gemini.tuxmachines.org/n/2023/04/26/y.gmi
Status Code
Success (20)
Meta
text/gemini;lang=en-GB
Capsule Response Time
149.668684 milliseconds
Gemini-to-HTML Time
0.339297 milliseconds

This content has been proxied by September (3851b).