Canonical has released a new major update for multiple versions of Ubuntu because it seems to be more than a dozen high-severity vulnerabilities recently discovered in the Linux kernel.
The new update fixes five flaws found in all supported versions of Ubuntu (Impish Indri, Focal Fossa, Bionic Beaver, and 16.04 and 14.04). Others affect certain versions of the OS.
Of the shortcomings being addressed, the media highlights CVE-2021-22600, a dual-feature vulnerability found in the implementation of the Packet Kernel Network Protocol, or CVE-2021-4083, a race problem encountered in the implementation of Unix domain sockets.
Run arbitrary code
Both can disable the device or allow the threat subject to run arbitrary code remotely.
Other notable flaws include CVE-2021-4155, found in the XFS file system implementation, CVE-2022-0330, found in the Intel i915 graphics driver, or CVE-2022-22942, found in the VMware virtual GPU driver, all of which allow sub Threats to be able to run arbitrary code, retrieve data or launch denial-of-service attacks.
Canonical encourages all its users to update them endpoints to the latest Linux kernel versions (linux-image-generic 18.104.22.168.40 for Ubuntu 21.10, linux-image-generic 22.214.171.124.113 for Ubuntu 20.04 LTS and 18.04 LTS or linux-image.1.5.1619 for Ubuntu 18.04 LTS) , immediately.
The easiest way to fix the system, according to 9to5Linux, is to run the command sudo apt update && sudo apt full upgrade in the Terminal program or other terminal emulators. In addition, users can use the graphical utility Software Updater to install new kernel versions and any other updates.
Updates are available in stable repositories, the publication adds. Devices will need to be restarted after the fix, while any third-party installed modules will need to be rebuilt or reinstalled.