KnowledgeBase
Differences between revisions 6 and 22 (spanning 16 versions)
|
Size: 1732
Comment: Updated backport request link ready to delete out of date page on wiki.
|
Size: 2506
Comment: add link to historical releases
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 1: | Line 1: |
| [[Include(SecurityTeam/Header)]] | <<Include(SecurityTeam/Header)>> |
| Line 3: | Line 3: |
| ||<tablestyle="float:right; font-size: 0.9em; width:30%; background:#F1F1ED; background-repeat: no-repeat; background-position: 98% 0.5ex; margin: 0 0 1em 1em; padding: 0.5em;">'''Contents'''[[BR]][[TableOfContents]]|| {{{ This page is still very much place-holder. If you have time, please update it with more information. }}} |
||<tablestyle="float:right; font-size: 0.9em; width:30%; background:#F1F1ED; background-repeat: no-repeat; background-position: 98% 0.5ex; margin: 0 0 1em 1em; padding: 0.5em;"><<TableOfContents>>|| |
| Line 13: | Line 7: |
| === Announcements === * Official [[https://www.ubuntu.com/usn/|Ubuntu Security Announcements]] * Unofficial translations of Ubuntu Security Announcements: * [[http://blogs.media-tips.com/bernard.opic/category/ubuntu-security-notices/|French]] |
|
| Line 14: | Line 13: |
| * [https://launchpad.net/ubuntu-cve-tracker Ubuntu CVE tracker] * [http://cve.mitre.org Common Vulnerabilities and Exposures] (CVEs) * [http://nvd.nist.gov/nvd.cfm National Vulnerabilities Database] * [http://oss-security.openwall.org Open Source Software Security] |
* [[https://launchpad.net/ubuntu-cve-tracker|Ubuntu CVE tracker]] * [[http://cve.mitre.org|Common Vulnerabilities and Exposures]] (CVEs) * [[http://nvd.nist.gov/nvd.cfm|National Vulnerabilities Database]] * [[http://oss-security.openwall.org|Open Source Software Security]] |
| Line 20: | Line 19: |
| * [:SecurityUpdateProcedures: Security Update Procedures] * [:StableReleaseUpdates/MicroReleaseExceptions] * [:StableReleaseUpdates] (SRU) * [https://help.ubuntu.com/community/UbuntuBackports Backport Requests] |
* [[SecurityTeam/UpdateProcedures| Security Update Procedures]] * [[StableReleaseUpdates/MicroReleaseExceptions]] * [[StableReleaseUpdates]] (SRU) * [[https://help.ubuntu.com/community/UbuntuBackports|Backport Requests]] |
| Line 26: | Line 25: |
| * [[https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures#Preparing%20an%20update|How to prepare an updated package]] | |
| Line 27: | Line 27: |
| * [[SecurityTeam/BuildEnvironment|schroot/sbuild setup]] * [[SecurityTeam/TestingEnvironment|virtual machine setup]] |
|
| Line 28: | Line 30: |
| * [https://code.launchpad.net/~ubuntu-bugcontrol/qa-regression-testing/master QA Regression Testing] | * [[https://code.launchpad.net/~ubuntu-bugcontrol/qa-regression-testing/master|QA Regression Testing]] |
| Line 35: | Line 37: |
| (FAQ could link to Knowledge{{{}}}Base) * policy on local DoS * policy on root passwords/sudo * policy on open network ports * policy on sudo * policy on home directory permissions |
* [[SecurityTeam/Policies|Ubuntu Security Policies]] * [[ApparmorProfileMigration|Creating enforcing AppArmor profiles policy]] |
| Line 43: | Line 41: |
| * ["AppArmor"] docs * ["SELinux"] docs |
* [[Security/Features|Feature Matrix]] (for all releases since Dapper, see the [[Security/Features/Historical|Historical Feature Matrix]].) * [[CompilerFlags|Security Hardening Compiler Flags]] * [[SecurityTeam/KnowledgeBase/AppArmorProfiles|AppArmor Profiles]] * [[SecurityTeam/KnowledgeBase/BuiltPIE|Applications Built with PIE]] * [[AppArmor]] docs * [[SELinux]] docs == Process == * [[SecurityTeam/BugTriage|Bug Triage]] * [[SecurityTeam/ReleaseCycle|Release Cycle Actions]] |
| Line 47: | Line 53: |
| * [:DebuggingSecurity] for bug reports * [:DebuggingApparmor] for bug reports dealing with ["AppArmor"] profiles |
* [[DebuggingSecurity]] for bug reports * [[DebuggingApparmor]] for bug reports dealing with [[AppArmor]] profiles |
Security updates
Announcements
Official Ubuntu Security Announcements
- Unofficial translations of Ubuntu Security Announcements:
Vulnerability Resources
Update processes
StableReleaseUpdates (SRU)
Update techniques
- How to handle backporting security updates
- How to test the update
- Proof of Concept (PoC)
- Build test suites (eg, 'make check')
- ABI compatibility (eg, check-symbols, nm)
- Checklists
Policies
Features
Feature Matrix (for all releases since Dapper, see the Historical Feature Matrix.)
AppArmor docs
SELinux docs
Process
Problems
DebuggingSecurity for bug reports
DebuggingApparmor for bug reports dealing with AppArmor profiles
SecurityTeam/KnowledgeBase (last edited 2025-04-17 11:05:59 by yhontyk)