Ubuntu Linux Critical OpenSSL and Ruby Vulnerabilities Fix Released
An unpatched security hole in Ubuntu Linux 8.04 LTS operating system could be used by attackers to send a crafted packet and cause a denial of service via application crash in applications linked against OpenSSL to take control of vulnerable servers. Also ruby package can be used to run a malicious script - an attacker could cause a denial of service or execute arbitrary code with the privileges of the user invoking the program. It is recommended that you immediately update your system. Affected systems:
OpenSSL Vulnerability - Ubuntu Linux LTS 8.04 and corresponding versions of Kubuntu, Edubuntu, and Xubuntu.
Ruby Vulnerability - Ubuntu 6.06 LTS Ubuntu 7.04 Ubuntu 7.10 Ubuntu 8.04 LTS and corresponding versions of Kubuntu, Edubuntu, and Xubuntu.
How do I fix this issue
Simply type the following two commands:
$ sudo apt-get update
$ sudo apt-get upgrade
After a standard system upgrade you need to reboot your computer to effect the necessary change:
$ sudo reboot
E-mail this to a Friend
Printable Version
You may also be interested in other helpful articles:
- Impact of the Debian OpenSSL Vulnerability On other Linux Distribution
- Security: OpenSSL Vulnerable to Forged Signatures
- Security Comparison: Windows vs Linux
- Security Warning: Serious flaw in Debian Linux OpenSSL Package
- Configure and Install Ruby on Rails on Red Hat Enterprise Linux
Leave a Reply
We encourage your comments, and suggestions. But please stay on topic, be polite, and avoid spam. Thank you very much for stopping by our site!
Tags: application crash, arbitrary code, attackers, CVE-2008-0891, CVE-2008-1672, CVE-2008-2662, CVE-2008-2663, CVE-2008-2664, CVE-2008-2725, CVE-2008-2726, denial of service, edubuntu, kubuntu, malicious script, openssl, privileges, ruby, security hole, Ubuntu Linux, vulnerability, xubuntu
Recent Comments
Yesterday ~ 12 Comments
Yesterday ~ 8 Comments
Yesterday ~ 185 Comments
Yesterday ~ 15 Comments
Yesterday ~ 3 Comments