The venerable Ubuntu 18.04 LTS release has transitioned into ESM, plus we look at Till Kamppeter’s excellent guide on how to set up your GitHub projects to receive private vulnerability reports, and we cover the week in security updates including PostgreSQL, Jhead, the Linux kernel, Linux PTP, snapd and a whole lot more.
56 unique CVEs addressed
CREATEprivileges - could then allow an auth user to execute arbitrary code as a the bootstrap supervisor - the other in row security properties which could allow to bypass policies and get read/write contrary to security policy.
CAP_NET_ADMINbut can get this in an unprivileged user namespace ∴ can be triggered OOTB by an unpriv user on Ubuntu
Vary:Cookieheader - requires the use of a caching proxy and other conditions though so may not be a widespread issue
ssl_Verify- parameter to <:Tiny>
nth-last-of-type()functions) - can pass it a string and it will compile that to an optimised function for calling by other code
realloc()on crafted messages - both only really an issue if parsing untrusted content
ioctl()request - could allow a snap to inject contents into the controlling terminal when run on a virtual console - this would then be executed when the snap finished running -> code exec outside the snap sandbox
TIOCLINUXas it already did for
TIOCSTIin the past
TIOCSTICVEs such as CVE-2016-9016 in firejail, CVE-2016-10124 in lxc, CVE-2017-5226 in bubblewrap, CVE-2019-10063 in flatpak