Subj : Nearly half of Ubuntu users could be vulnerable to these security
To   : All
From : TechnologyDaily
Date : Thu Jul 27 2023 17:15:04

Nearly half of Ubuntu users could be vulnerable to these security flaws

Date:
Thu, 27 Jul 2023 16:10:19 +0000

Description:
Eight Ubuntu vulnerabilities have been patched in this latest update, with 
two relating to OverlayFS.

FULL STORY
======================================================================

Wiz researchers Sagi Tzadik and Shir Tamari have identified a pair of 
vulnerabilities that are estimated to be affecting two in five Ubuntu users, 
so users of the popular Linux distro are being urged to update now. 

The vulnerabilities, being tracked as CVE-2023-32629 and CVE-2023-2640, were 
both dealt with in the latest patch available for Ubuntu 23.04 Lunar Lobster. 

Still, many users wont have applied the necessary update yet which is 
problematic because Tzadik and Tamari say that exploits for these 
vulnerabilities are already publicly available. Update your Ubuntu now 

Both problems stem, say the researchers, from when the Linux kernel project 
made modifications to the OverlayFS module in 2019 and 2022, which conflicted 
with Ubuntus earlier changes. When the new code was adopted by Ubuntu, both 
CVEs became apparent. Read more 

 > These are the best endpoint detection tools 


 > Microsoft reveals Azure Linux is available now 


 > Ubuntu Pro is now available for everyone to use 

The Wiz advisory reads: OverlayFS serves as an attractive attack surface for 
local privilege escalation since it is often accessible to unprivileged users 
via user namespaces, it has a history of numerous logical vulnerabilities 
that were easy to exploit, and it has a relatively active code base. 

For both CVE-2023-32629 and CVE-2023-2640, Ubuntu said: the OverlayFS 
implementation in the Ubuntu Linux kernel did not properly perform permission 
checks in certain situations. This led to the potential for a local attacker 
to gain elevated privileges. 

At the same time, Linux applied fixes for six other vulnerabilities. Ubuntu 
says that a reboot is required after an update to ensure that the changes 
have taken effect. 

Given the far reach of these vulnerabilities because of the popularity of 
OverlayFS, and their severity (one marked as high, the other as medium), 
users should look to apply updates even if they are unsure of their 
particular setups or that they think they have already updated recently. Give 
these best firewalls a go to boost your security



======================================================================
Link to news story:
https://www.techradar.com/pro/nearly-half-of-ubuntu-users-could-be-vulnerable-
to-these-security-flaws


--- Mystic BBS v1.12 A47 (Linux/64)
 * Origin: tqwNet Technology News (1337:1/100)

.