Highest Voted 'vulnerability' Questions

15

votes

2 answers

Is Ubuntu itself vulnerable to Log4shell?

We run different versions of Ubuntu OS (mostly ver 18 and 20), on MANY machines. My question; Is Ubuntu OS affected by the Log4shell vulnerability now reported in log4js? TIA

security vulnerability

asked Dec 14 '21 at 18:47

Andy Padula Jr

175

15

votes

2 answers

Upgrade sudo to 1.9.5p2 version due to CVE-2021–3156 vulnerability

How do I upgrade sudo to version 1.9.5p2? I use Ubuntu 20.04. I have already tried: sudo apt-get update sudo apt-get upgrade But I am still on version 1.8.31.

upgrade 20.04 updates sudo vulnerability

asked Jan 27 '21 at 13:35

Lochness

171

13

votes

1 answer

Slow recovering from lock screen Ubuntu 18.04

I addition to being aesthetically pleasing, I am quite pleased with some of the new features in 18.04. However, what I am not quite impressed with is how slow it is recovering from the lock screen. See, on my 8-year-old laptop, every time I open…

18.04 lock-screen wayland vulnerability

asked May 21 '18 at 13:59

Juan Antonio

1,602

10

votes

2 answers

What is the 'Badlock Bug'?

A user on the Ask Ubuntu General Room posted a link to Badlock. After some googling around, all I can find is that it is a mysterious security bug, that uses the same website template as Heartbleed. I manage Linux Servers, a mysterious security bug…

security vulnerability

asked Apr 12 '16 at 13:45

blade19899

26,994

10

votes

4 answers

What Ubuntu versions are affected by CVE-2022-0847

I have been informed about the CVE-2022-0847 vulnerability. I'm wondering what versions of Ubuntu are affected by such a bug.

bug-reporting vulnerability

asked Mar 08 '22 at 11:09

floatingpurr

627

9

votes

1 answer

How to update glibc on ubuntu 20.04 due to security vulnerability

I am trying to update glibc 2.31-0ubuntu9.2. As an internal scan has picked this up as vulnerable. https://nvd.nist.gov/vuln/detail/CVE-2021-33574#range-6777140 When I use sudo apt-get update then sudo apt install glibc I am getting nowhere with…

20.04 security glibc gdb vulnerability

asked Dec 20 '21 at 18:22

lcfc

91

6

votes

1 answer

Is xz on brew on Ubuntu vulnerable?

I had brew on Ubuntu as I installed a tool that's not available on apt. Then today I realized that xz --version returns 5.6.1 which is the version related to CVE-2024-3094, and when I ran which xz I realized the one in /home/linuxbrew/.linuxbrew/bin…

package-management vulnerability

asked Jun 06 '24 at 05:29

phuclv

760

5

votes

2 answers

Is Linux getting less or more secure?

The famous so-called virus-and-hacker-free Mac is a thing of the past: As it gets more popular it gets more vulnerabilities. Will Linux be the same at some point in time? Is it getting less of more secure? I know: "No computer or network system is…

security vulnerability

asked Oct 31 '15 at 17:04

user466616

4

votes

1 answer

Test whether Ubuntu is vulnerable to (CVE-2016-4484)

I've been reading this. Apparently I would gain root access if I hold down enter (somewhere) for 70 seconds. I tried it on a password prompt but it gave me like 3 attempts and stopped. I tried it on a tty but it didn't work also. Am I not vulnerable…

security root vulnerability

asked Nov 20 '16 at 16:36

842Mono

10,070

4

votes

3 answers

Which Ubuntu releases have fixes for CVE-2015-7547 ("Extremely Severe Bug" with libc getaddrinfo())?

Ars Technica posted an article describing the getaddrinfo() bug and how it is widespread in the Linux world. The vulnerability was introduced in 2008 in GNU C Library, a collection of open source code that powers thousands of standalone…

networking security glibc vulnerability

asked Feb 17 '16 at 15:47

George

49

3

votes

1 answer

Do malicious web sites ever exploit vulnerabilities in Linux clients?

Do malicious web sites ever exploit vulnerabilities in Linux clients? Are there any documented instances of this happening in the wild? I am talking about actually taking over the client's machine rather than cross-site scripting. Also, I'm not…

internet security browser vulnerability

asked Mar 26 '16 at 14:33

MWB

684

3

votes

1 answer

With the release of Ubuntu Pro, Laravel Forge provisioned servers are left vulnerable

Since Canonical released Ubuntu Pro this year, they are now withholding some security patches for many common packages, including some that are included on Laravel Forge provisioned servers. I use AWS Inspector to monitor for vulnerabilities on my…

security laravel vulnerability esm ubuntu-pro

asked Feb 24 '23 at 03:27

jalipert

41

2

votes

1 answer

is the current Adobe Flash 'ransomware vulnerability' affecting Ubuntu users?

Currently there is an important release from Adobe telling users to update their Flash after learning of certain vulnerabilities where users computer are infected with ransomware. One of the many news articles about the issue can be seen HERE. My…

updates security flash vulnerability

asked Apr 08 '16 at 06:10

Kalamalka Kid

3,304

2

votes

1 answer

What's the best way to avoid getting hacked by anyone, e.g. governments or other criminals?

I don't know if you've all heard/read about the software from companies such as "hacking team", see e.g. the remote control…

security hacking vulnerability

asked Oct 21 '15 at 23:18

Okay Dokey

108

2

votes

1 answer

Will creating a directory inside a system directory with 777 permission cause security vulnerability?

Can creating directories with 777 permission inside system directories cause any security weakness? For example, say I open a directory called Custom inside /usr/share/backgrounds/ and give it 777 permission. Is it going to create any kind of…

permissions filesystem security directory vulnerability

asked Dec 21 '14 at 13:45

CluelessNoob

2,383

Questions tagged [vulnerability]