Episode 96

Posted on Friday, Nov 13, 2020
This week we look at results from the Tianfu Cup 2020, the PLATYPUS attack against Intel CPUs, a detailed writeup of the GDM/accountsservice vulnerabilities covered in Episode 95 and more.

Show Notes

Overview

This week we look at results from the Tianfu Cup 2020, the PLATYPUS attack against Intel CPUs, a detailed writeup of the GDM/accountsservice vulnerabilities covered in Episode 95 and more.

Goings on in Ubuntu Security Community

Tianfu Cup 2020 [00:37]

Github writeup of GDM/accountsservice vulnerabilities [02:53]

PLATYPUS attack against Intel CPUs [03:41]

This week in Ubuntu Security Updates [05:27]

23 unique CVEs addressed

[USN-4617-1] SPICE vdagent vulnerabilities

[USN-4616-2] AccountsService vulnerabilities

[USN-4618-1] tmux vulnerability

  • 1 CVEs addressed in Focal (20.04 LTS), Groovy (20.10)

[USN-4619-1] dom4j vulnerability

[USN-4599-3] Firefox regressions

  • Affecting Xenial (16.04 LTS), Bionic (18.04 LTS), Focal (20.04 LTS), Groovy (20.10)
  • Episode 94

[USN-4620-1] phpLDAPadmin vulnerability

[USN-4621-1] netqmail vulnerabilities

[USN-4622-1] OpenLDAP vulnerability

  • 1 CVEs addressed in Xenial (16.04 LTS), Bionic (18.04 LTS), Focal (20.04 LTS), Groovy (20.10)

[USN-4623-1] Pacemaker vulnerability

  • 1 CVEs addressed in Xenial (16.04 LTS), Bionic (18.04 LTS), Focal (20.04 LTS), Groovy (20.10)

[USN-4624-1] libexif vulnerability

  • 1 CVEs addressed in Precise ESM (12.04 ESM), Trusty ESM (14.04 ESM), Xenial (16.04 LTS), Bionic (18.04 LTS), Focal (20.04 LTS), Groovy (20.10)

[USN-4625-1] Firefox vulnerability

  • 1 CVEs addressed in Xenial (16.04 LTS), Bionic (18.04 LTS), Focal (20.04 LTS), Groovy (20.10)

[USN-4626-1] Linux kernel vulnerabilities

[USN-4627-1] Linux kernel vulnerability

  • 1 CVEs addressed in Precise ESM (12.04 ESM), Trusty ESM (14.04 ESM), Xenial (16.04 LTS), Bionic (18.04 LTS), Focal (20.04 LTS)

[USN-4628-1] Intel Microcode vulnerabilities

Get in contact