Patch your Linux Distro NOW!

Forumite Members General Topics Tech Security Talk Patch your Linux Distro NOW!

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • July 2, 2022 at 7:50 am #69671
    Ed PEd P
    Participant
      @edps
      Forumite Points: 39

      A bug that has been in existence for over 12 years was finally caught and patched early this year, but is now being used used for malware exploits (Pwnkit). The bug was a kernel level bug, so you need to make sure that you have run all the updates including the kernel updates that are often turned off in Mint.

      IMO Mint’s security defaults are dumb, and give priority to ‘not breaking anything’ over security. If you use Mint please make sure that it updates the kernel, otherwise you could be running with something years out of date like most IOT users!

      Mint update instructions are given here:

      https://linuxways.net/mint/how-to-update-kernel-in-linux-mint-20/

      Like many Windows bugs, the exploit is a privilege escalation and the attack can be routed through a harmless local application and then into an application that is able to communicate to the wider world.

      Details of the exploit are give on TechRadar:

      https://www.techradar.com/news/this-major-linux-security-vulnerability-has-been-fixed-so-patch-now

      and

      https://www.techradar.com/news/cisa-sounds-the-alarm-over-high-severity-bug-in-all-major-linux-distros 

      July 2, 2022 at 12:15 pm #69674
      Ed PEd P
      Participant
        @edps
        Forumite Points: 39

        I was being lazy, I should have opened a newish Mint and figured out the easy way of updating the Mint kernel.

        a) Open the Update Manager

        b) Open the View tab (what a stupid tab to use!). Select Linux Kernels. If you have never done this before it will trigger all sorts of dire warnings of Doom such as your nadgers dropping off. Ignore this carp. and press OK (I think)

        c) A simple tab will open. Select 5.15 to get the latest stable Kernel with the missing security updates, and install it.

        d) I guess you could use the previous screen to remove old kernels, but I prefer to open a terminal and type

        sudo apt autoremove, then OK and this will remove all the old kernels and associated cruff.

        then just make sure you are ok by using

        sudo apt autoclean, and sudo apt apdate, then reboot

        After a while the Update Manager will update your kernel to a slightly more current version

      • Author
        Posts
      Viewing 2 posts - 1 through 2 (of 2 total)
      • You must be logged in to reply to this topic.