Security Team Weekly Summary: October 12, 2017

Canonical

on 12 October 2017

Tags: livepatch , Public cloud , Security , USN

This article is more than 7 years old.

The Security Team weekly reports are intended to be very short summaries of the Security Team’s weekly activities.

If you would like to reach the Security Team, you can find us at the #ubuntu-hardened channel on FreeNode. Alternatively, you can mail the Ubuntu Hardened mailing list at: [email protected]

During the last week, the Ubuntu Security team:

  • Triaged 238 public security vulnerability reports, retaining the 75 that applied to Ubuntu.
  • Published 12 Ubuntu Security Notices which fixed 43 security issues (CVEs) across 9 supported packages.

Ubuntu Security Notices

Bug Triage

Mainline Inclusion Requests

Updates to Community Supported Packages

  • Simon Quigley (tsimonq2) provided debdiffs for trusty-artful for git (LP: #1719740)

Development

  • Reviews:
    • PR 3973/cgroup freezer in support of layouts
    • PR 3998/utilize new seccomp logging features
    • PR 3999/add detection of stale mount namespaces for layouts
    • PR 3872/preserve TMPDIR and HOSTALIASES across snap-confine invocation
    • PR 3958/add support for /home on NFS
    • PR 4008/create missing mountpoints in support of layouts
  • submitted policy-updates-xxx PR 4002
  • submitted small lttng PR 4003
  • submitted small lxd PR 4004
  • fscrypt 0.2.1 and 0.2.2 packaged

  • libseccomp patches rebased to latest

What the Security Team is Reading This Week

Weekly Meeting

More Info

Looking to run Linux on public clouds?

Did you know Ubuntu is the world’s most popular Linux operating system across public clouds? Canonical publishes official images on Amazon AWS, Microsoft Azure, Google Cloud, IBM Cloud and Oracle Cloud. Learn about the available features and our support commitment

Run your public cloud workloads on Ubuntu ›

Newsletter signup

Get the latest Ubuntu news and updates in your inbox.

By submitting this form, I confirm that I have read and agree to Canonical's Privacy Policy.

Related posts

A complete security view for every Ubuntu LTS VM on Azure

Azure’s Update Manager now provides a complete security view for all Ubuntu LTS VMs—18.04, 20.04, 22.04, and 24.04—by showing available updates from Ubuntu...

Update Livepatch Client for the newest kernel module signing certificate

The kernel engineering team at Canonical has generated a new module signing certificate on May 16, 2025, and it is embedded in all Ubuntu kernels published...

How is Livepatch safeguarded against bad actors?

What safeguards the Livepatch security patching solution against bad actors and malicious code masquerading as an update? Learn about Secure Boot and module signing.