Diff for "SecurityTeam/KnowledgeBase"

KnowledgeBase

Differences between revisions 41 and 48 (spanning 7 versions)

Ubuntu Security Team • Roadmap • Getting Involved • Knowledge Base • FAQ • Contacts

Contents

In order to stay secure, Ubuntu users should simply apply all Ubuntu security updates to their systems when they become available.

For some vulnerabilities that are highlighted by the media, we've provided additional information as part of our KnowledgeBase:

How to prepare an updated package
How to handle backporting security updates
- schroot/sbuild setup
- virtual machine setup
How to test the update
- QA Regression Testing
- Proof of Concept (PoC)
- Build test suites (eg, 'make check')
ABI compatibility (eg, check-symbols, nm)
Checklists
Media coverage

SecurityTeam/KnowledgeBase (last edited 2023-08-25 14:36:54 by rodrigo-zaiden)

-  ⇤ ← Revision 41 as of 2018-05-09 22:44:53 → 
  Size: 4058
  Editor: seth-arnold
  Comment: link Mov/Pop SS vulnerabilities
+   ← Revision 48 as of 2019-05-14 17:03:11 → ⇥
  Size: 4923
  Editor: tyhicks
  Comment: Add link to MDS KB article
-Deletions are marked like this.
+Additions are marked like this.
 Line 24:
+ * [[https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/Variant4 | Variant 4 of Side Channel issues (CVE-2018-3639)]]
 * [[https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/LazyFP | Lazy FP Save/Restore (CVE-2018-3665)]]
 * [[https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/BCBS | Bounds Check Bypass Store (BCBS) (CVE-2018-3693) ]]
 * [[https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/NetSpectre | NetSpectre ]]
 * [[https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/L1TF | L1 Terminal Fault (L1TF) (CVE-2018-3615, CVE-2018-3620, and CVE-2018-3646)]]
 * [[https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/runC | runC / docker.io Privileged Container Escape (CVE-2019-5736)]]
 * [[https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/MDS | Microarchitectural Data Sampling (MDS) (CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, and CVE-2019-11091)]]