Unfortunately, software vulnerabilities are inherent in the code development itself and there are plenty of them every week in all kinds of products and platforms. Some developments are an «exploiter» in themselves for technological reasons (Adobe Flash, for example), but nobody is spared in this field, neither systems nor applications that unfortunately these cases grow with the passage of time hand in hand with the advancement of technology as today we will see the case of an Ubuntu vulnerability.
Ubuntu Vulnerability
The security error this time is about a vulnerability in the Linux Kernel of the following Ubuntu versions: Ubuntu 14.04 LTS Trusty Tahr and Ubuntu 15.04 Vivid Velvet. There were exactly two bugs in each version and they were discovered by users, the good news is that this vulnerability has already been corrected.
The user Benjamin Randazzo who was the one who discovered this vulnerability that a local user could escalate privileges and steal private information through the Kernel due to a failure in a multi-system controller at the same time the Linux Kernel of this version had not reserved or limited the space that can occupy the file where the registry is saved, then the system service could be denied with a DoS attack on this file.
Of course these vulnerabilities affect all versions of Ubuntu, whether they are Ubuntu, Lubuntu, Edubuntu, Xubuntu … and we must update immediately for greater security.
Of course these vulnerabilities affect all versions of Ubuntu, whether Ubuntu, Lubuntu and all its other versions, so we must update immediately for greater security and thus avoid these problems and risks that these can cause us.
To highlight software security, some aspects must be taken into account beyond the number of vulnerabilities. As the rating of its severity, the exploitability index and its remote or physically accessible method to carry out the attacks, how long it has taken to detect it and, importantly, how long has the patch been available to fix it, an aspect for which open source software stands out precisely where patches are usually ready in a short space of time that is why it is It is important to always analyze these and be informed.
