| Chad Waters via plug on 20 Jan 2022 08:00:56 -0800 |
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
| Re: [PLUG] patch Ubuntu now, Wine |
‐‐‐‐‐‐‐ Original Message ‐‐‐‐‐‐‐ On Thursday, January 20th, 2022 at 10:47 AM, jeffv via plug <plug@lists.phillylinux.org> wrote: > 'Now' would be the right time to patch Ubuntu container hosts and ditch > > 21.04 thanks to heap buffer overflow bug [21.04 reaching EOL anyway] > > https://www.theregister.com/2022/01/20/ubuntu_2104_eol/ > > The CVE-2022-0185 vulnerability in Ubuntu is severe enough that Red Hat > > is also advising immediate patching. > > The flaw allows a process inside a Linux user namespace to escape, which > > means it potentially affects any machine running containers. Its not just Ubuntu. MITRE and NVD don't have details yet, but Debian's tracker references other distros: https://security-tracker.debian.org/tracker/CVE-2022-0185
Attachment:
publickey - plug@wooders.net - 0x93D3331B.asc
Description: application/pgp-keys
Attachment:
signature.asc
Description: OpenPGP digital signature
___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug