KnowledgeBase
Differences between revisions 14 and 27 (spanning 13 versions)
|
Size: 2186
Comment: added SecurityUpdateProcedures
|
Size: 2971
Comment:
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 7: | Line 7: |
| === Announcements === * Official [[https://www.ubuntu.com/usn/|Ubuntu Security Announcements]] * Unofficial translations of Ubuntu Security Announcements: * [[http://blogs.media-tips.com/bernard.opic/category/ubuntu-security-notices/|French]] === Media coverage === In order to stay secure, Ubuntu users should simply apply all Ubuntu security updates to their systems when they become available. For some vulnerabilities that are highlighted by the media, we've provided additional information as part of our !KnowledgeBase: * [[https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/GHOST|GHOST (CVE-2015-0235)]] |
|
| Line 9: | Line 20: |
| * [[http://people.canonical.com/~ubuntu-security/cve/|Ubuntu CVE Tracker]] (web view) | |
| Line 14: | Line 26: |
| * [[SecurityUpdateProcedures| Security Update Procedures]] | * [[SecurityTeam/UpdateProcedures| Security Update Procedures]] |
| Line 20: | Line 32: |
| * [[SecurityUpdateProcedures|How to prepare an updated package]] | * [[https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures#Preparing%20an%20update|How to prepare an updated package]] |
| Line 22: | Line 34: |
| * [[SecurityTeam/BuildEnvironment|schroot/sbuild setup]] * [[SecurityTeam/TestingEnvironment|virtual machine setup]] |
|
| Line 30: | Line 44: |
| * [[https://wiki.ubuntu.com/DebuggingSecurity#Local%20Denial%20of%20Service|Local denial of service (DoS) policy]] * [[RootSudo|Sudo (including root password) policy]] * [[https://wiki.ubuntu.com/DebuggingSecurity#Local%20Network%20Privacy|Open network ports and local network privacy policy]] * [[https://wiki.ubuntu.com/DebuggingSecurity#Permissive%20Home%20Directory Permissions|Home directory permissions policy]] |
* [[SecurityTeam/Policies|Ubuntu Security Policies]] |
| Line 37: | Line 48: |
| * [[Security/Features|Feature Matrix]] (for all releases since Dapper, see the [[Security/Features/Historical|Historical Feature Matrix]].) | |
| Line 42: | Line 54: |
== Process == * [[SecurityTeam/BugTriage|Bug Triage]] * [[SecurityTeam/ReleaseCycle|Release Cycle Actions]] |
Security updates
Announcements
Official Ubuntu Security Announcements
- Unofficial translations of Ubuntu Security Announcements:
Media coverage
In order to stay secure, Ubuntu users should simply apply all Ubuntu security updates to their systems when they become available.
For some vulnerabilities that are highlighted by the media, we've provided additional information as part of our KnowledgeBase:
Vulnerability Resources
Ubuntu CVE Tracker (web view)
Update processes
StableReleaseUpdates (SRU)
Update techniques
- How to handle backporting security updates
- How to test the update
- Proof of Concept (PoC)
- Build test suites (eg, 'make check')
- ABI compatibility (eg, check-symbols, nm)
- Checklists
Policies
Features
Feature Matrix (for all releases since Dapper, see the Historical Feature Matrix.)
AppArmor docs
SELinux docs
Process
Problems
DebuggingSecurity for bug reports
DebuggingApparmor for bug reports dealing with AppArmor profiles
SecurityTeam/KnowledgeBase (last edited 2025-04-17 11:05:59 by yhontyk)