Ubuntu overlayFS vulnerability – SC Magazine UK

A privilege-escalation vulnerability released earlier this week was found in a few versions of Ubuntu. The operating system fails to check permissions when users are creating files, resulting in the bug. When a file needs to be writable it is copied from the lower directory to the upper file system where is can be modified.

Canonical has patched the bug present in versions 12.04, 14.04, 14.10 and 15.04. The bug existed in the overlayFS component of Ubuntu.

Security researcher Philip Pettersson says an attacker would have the ability to list the contents of any directory on the machine, regardless of permissions. The permission needed is the one of the original file owner as opposed to the user triggering the copy_up.

Article source: http://www.scmagazineuk.com/ubuntu-overlayfs-vulnerability/article/422198/

GNU Patch Vulnerabilities Closed in Ubuntu – Softpedia

Details about GNU patch vulnerabilities that have been found and fixed in Ubuntu 14.10, Ubuntu 14.04 LTS, and Ubuntu 12.04 LTS have now been published by Canonical in a security notification.

Ubuntu maintainers have been quick to integrate the latest changes for GNU Patch, which is an important component in the operating system. It’s worth noting that Ubuntu 15.04 hasn’t been affected but this issue. In any case, if you have any of the aforementioned OSes, this would be a good time to update.

“Jakub Wilk discovered that GNU patch did not correctly handle symbolic links in git style patch files. An attacker could specially craft a patch file that could overwrite arbitrary files with the privileges of the user invoking the program. This issue only affected Ubuntu 14.04 LTS and Ubuntu 14.10,” reads the security notice.

This is just one of the problems that have been identified and corrected with this particular update. For a more detailed description of the problems, you can see Canonical’s security notification. Users have been advised to upgrade their systems as soon as possible.

The problems can be repaired if you upgrade your system to the latest patch package specific to each distribution. To apply the patch, users will have to run the Update Manager application. A reboot of the system is not required.

Article source: http://linux.softpedia.com/blog/gnu-patch-vulnerabilities-closed-in-ubuntu-485057.shtml

Meizu launches the MX4 Ubuntu Edition | Alphr – PC Pro

Technology

Devices, software, wearables and more









  1. Meizu launches the MX4 Ubuntu Edition

    The MX4 packs in a 20.7MP camera and Sharp 5.36in Retina screen – but is it better than the first Ubuntu phone?









  2. GCHQ reverse-engineered antivirus software, leak reveals

    Edward Snowden whistleblowing revelations reveal that the GCHQ spy agency sought legal protections to reverse-engineer AV software









  3. Virgin Media begins £3 billion Project Lightning

    Upgrade will see Manchester become the first city to receive increased 154Mbps broadband coverage









  4. Netgear Arlo review: The best home monitoring system around

    The ultimate remote camera system, Arlo, takes the fight to Google’s Nest Cam

Article source: http://www.alphr.com/mobile-phones/1001015/meizu-launches-the-mx4-ubuntu-edition

Linux 4.1 rolls out as Ubuntu eyes October integration- The Inquirer

THE LINUX KERNEL has been committed again, this time to version 4.1. Linus Torvalds, or Mr Linux to you, announced the news on the mailing list as per.

It was promised at the release of version 4.0 that 4.1 would be a bigger deal, and 4.0 was downplayed by Torvalds as a more administrative number change than a sea change.

Torvalds said at the time: “Linux 4.0 was a pretty small release in linux-next and in final size, although obviously ‘small’ is relative. It’s still over 10,000 non-merge commits. But we’ve definitely had bigger releases and, judging by linux-next, v4.1 is going to be one of the bigger ones.”

There’s a lot more going on in this one, but perhaps not as much as you might expect from that statement.

There are power management tweaks for ARM and x86 devices, support for additional WiFi cards from Realtek, and modifications for various tablets and controllers, including rumble controls for the Xbox One controller.

Nothing is major, but all these little tweaks will represent the thing that someone has been waiting for.

You won’t see Linux 4.1 in the public eye for a while, but developers are already preparing it for release.

Ubuntu 5.10 (codenamed: Wily Werewolf) is already incorporating it ahead of its release in October, and enterprise distros such as Red Hat have indicated that they will integrate 4.0 at around the same time.

Torvalds wrote: “So after a *very* quiet week after the 4.1-rc8 release, the final 4.1 release is now out. I’m not sure if it was quiet because there really were no problems (knock wood), or if people decided to be considerate of my vacation, but whatever the reason, I appreciate it.”

Jim Zemlin, executive director of the Linux Foundation, told INQUIRER readers in a recent column that the speed of kernel development in Linux is “unmatched”. µ

Article source: http://www.theinquirer.net/inquirer/news/2414495/linux-41-rolls-out-as-ubuntu-eyes-october-integration

WPA and WPA2-Related Exploits Closed in Ubuntu – Softpedia

Canonical has published details in a security notice about a WPA and WPA2 vulnerability that has been found and fixed in Ubuntu 15.04, Ubuntu 14.10, Ubuntu 14.04 LTS, Ubuntu 12.04 LTS, and Ubuntu 10.04 LTS operating systems.

The developers who fixed the issue explained that wpa_supplicant and hostapd could have been made to crash if they received specially crafted network traffic. Ubuntu maintainers have been quick.

According to the security notice, “Kostya Kortchinsky discovered multiple flaws in wpa_supplicant and hostapd. A remote attacker could use these issues to cause wpa_supplicant or hostapd to crash, resulting in a denial of service. (CVE-2015-4141, CVE-2015-4142, CVE-2015-4143, CVE-2015-4144, CVE-2015-4145, CVE-2015-4146).”

For a more detailed description of the problems, you can see Canonical’s security notification. Users should upgrade their Linux distribution in order to correct this issue.

The flaw can be fixed if you upgrade your system(s) to the latest hostapd and wpasupplicant packages specific to each distribution. To apply the patch, users can simply run the Update Manager application.

If you don’t want to use the Software Updater, you can open a terminal and enter the following commands (you will need to be root):

In general, a standard system update will make all the necessary changes, but users will also have to reboot the system.

Article source: http://news.softpedia.com/news/wpa-and-wpa2-related-exploits-closed-in-ubuntu-484941.shtml

New Unity 8 Landed in Ubuntu Touch, the Calendar App Makes a Comeback …

Canonical’s Łukasz Zemczak is back at work after a short break at the end of last week, and he just informed us about the new features implemented in the development version of the Ubuntu Touch mobile operating system for Ubuntu phones.

Among the most interesting things that landed in Ubuntu Touch, we can mention a brand-new Unity 8 user interface for which we wrote a detailed article last week, updated Telephony stack with new features, as well as several new language layouts for the ubuntu-keyboard.

Additionally, it would appear that the Ubuntu Touch development team received green light to re-include the Calendar app to the operating system and make it the default calendar application in the main images of Ubuntu Touch, which will be added in the coming days.

“Today we landed a new Unity8, telephony stack bits and included new language layouts in the seeds for the ubuntu-keyboard. We also finally got green light on re-including calendar-app as a default application on our images – we’ll try doing that as soon as possible. Great job everyone!” says Łukasz Zemczak.

The next Ubuntu Touch OTA is planned for July 2015

With today’s announcement, we are also informing our readers about the plans for the next OTA (Over the Air) update for the Ubuntu Touch mobile operating system, which should see the light of day sometime at the beginning of middle of next month. Apparently, there are no news about an OTA-4.5 update, so the regressions introduces by OTA-4 will be fixed in OTA-5.

Łukasz Zemczak urges all Ubuntu Touch developers to explicitly mention any package dependency changes when they submit Debian/changelog entries, so that the Ubuntu Touch team can be aware of any change made to dependencies by merges. In the future, entries that do not contain this information, might get rejected.

Article source: http://news.softpedia.com/news/new-unity-8-landed-in-ubuntu-touch-the-calendar-app-makes-a-comeback-484990.shtml

Ubuntu scaling up VM addressability • The Register

Canonical is taking a shot at dealing with virtual machine address scaling problems, and reckons it can do so without resorting to software-defined network approaches.

The company reckons its scheme, The Fan, gives “any cloud user 250x the number of addresses they would normally have access to in a cloud environment”.

The brainchild of Mark Shuttleworth and John Meinel, The Fan performs a bit of fancy IP address mapping and tunnelling to achieve this.

As this post explains: “Whether for whole machine containers (LXD) or process containers (Docker), it is easiest for these containers to be managed as separate networking entities, which means they need their own IP addresses”.

So the idea is to map a /16 onto a /8 in the data centre environment: “Fan addresses are assigned as subnets on a virtual bridge on the host”, the post explains. This means the scheme provides “an extra 253 usable addresses for each host IP address on the /16”.

The system needs to know the local address space for the underlay – for example, 172.16.0.0/16, of which 172.16 is used as the underlay – and the overlay space (like 10.0.0.0/8). The overlay /8 network has to be kept back from being advertised on the Internet or the underlay won’t be able to see it.

Canonical's The Fan

The Fan: just lay down addresses and tunnel between them

Back to Ubuntu’s explanation:

“The fan mapping device encapsulates any traffic routed through it and addresses the outer packet to the appropriate underlay IP address. For instance, suppose a process or container on 172.16.5.6 wanted to communicate with a container that announced its address as 10.3.4.25.

“The fan-10 would encapsulate that packet and address it to the appropriate underlay address, which is 172.16.3.4. When the packet arrives at 172.16.3.4, it will be unwrapped, leaving the packet addressed to 10.3.4.25.”

Of course, defining network address ranges and routing traffic between VMs sounds to the El Reg networking desk like it’s (a) software-defined and (b) a network, but perhaps we’re quibbling.

Canonical reckons it’s demonstrated The Fan operating at 5 Gbps between two Docker containers on separate hosts, and it’s got public test images for Amazon Web Services and Google Compute Engine. ®

Article source: http://www.theregister.co.uk/2015/06/23/ubuntu_scaling_up_vm_addressability/

WPA and WPA2-Related Exploits Closed in Ubuntu

Canonical has published details in a security notice about a WPA and WPA2 vulnerability that has been found and fixed in Ubuntu 15.04, Ubuntu 14.10, Ubuntu 14.04 LTS, Ubuntu 12.04 LTS, and Ubuntu 10.04 LTS operating systems.

The developers who fixed the issue explianed that wpa_supplicant and hostapd could have been made to crash if they received specially crafted network traffic. Ubuntu maintainers have been quick

According to the security notice, “Kostya Kortchinsky discovered multiple flaws in wpa_supplicant and hostapd. A remote attacker could use these issues to cause wpa_supplicant or hostapd to crash, resulting in a denial of service. (CVE-2015-4141, CVE-2015-4142, CVE-2015-4143, CVE-2015-4144, CVE-2015-4145, CVE-2015-4146).”

For a more detailed description of the problems, you can see Canonical’s security notification. Users should upgrade their Linux distribution in order to correct this issue.

The flaw can be fixed if you upgrade your system(s) to the latest hostapd and wpasupplicant packages specific to each distribution. To apply the patch, users can simply run the Update Manager application.

If you don’t want to use the Software Updater, you can open a terminal and enter the following commands (you will need to be root):

In general, a standard system update will make all the necessary changes, but users will also have to reboot the system.

Article source: http://news.softpedia.com/news/wpa-and-wpa2-related-exploits-closed-in-ubuntu-484941.shtml

How to Change the Folder Color in Ubuntu

One of the most requested features for Ubuntu is the ability to change the color of the folders, but that’s not something that will land in Nautilus anytime soon. The good news is that there is a little tool out there that can do the job just as well.

Linux users like to change the way their desktop looks and acts, and they can do pretty much anything they want to, for the most part. There are some limitations of course, but most of the time it’s just the developer’s lack of time to deal with a certain feature. This was made very clear in the case of Ubuntu, which already got a few requests regarding this particular feature.

Ubuntu devs marked this as “won’t fix,” which means it’s not happening, at least not anytime soon. Users went upstream and tried to request this feature in Nautilus (from the GNOME stack), but it wasn’t a no go. Fortunately, sometimes the community is well ahead of the developers and Marcos Costales has built Folder Color to fix this issue.

Folder Color works in most distros

If you have Ubuntu, Debian, Mint, openSUSE, Arch Linux, or pretty much anything that has Nautilus, Nemo or the Caja File Browser, then you’ll be able to make all the changes you want to the folders. We’ll focus on Ubuntu since many distros have already implemented this tool. We’re looking at you, Ubuntu MATE.

All you need to do in order to get the application is to enter a few commands in a terminal near you. You will need to be root, but that’s pretty well understood:

Now, when you’re opening a Nautilus (Files), you will find a Folder Color entry. Also, it’s worth pointing out that Folder Color works with the Numix, Vibrancy Colors, and Vivacious Colors themes.

Enjoy!

Article source: http://news.softpedia.com/news/how-to-change-the-folder-color-in-ubuntu-484932.shtml

Ubuntu Touch Gets Automatic Refunds for Purchases, Lets Users Edit App …

Canonical employee Alejandro J. Cura sent in his weekly report about the progress made in the Ubuntu Touch mobile operating system used in Ubuntu smartphone devices like BQ Aquaris E5 or Meizu MX4.

According to Alejandro J. Cura, it would appear that Ubuntu Touch finally received support for automatic refunds for all apps that have been purchased from the Click Store Scope, but will only work in the first 15 minutes from the moment you install the respective apps.

The new automatic refunds feature has landed in the Wily Werewolf development channel, but the team works hard these days to bring it to the Vivid+overlay branch too. Additionally, users are now able to edit the application ratings and reviews in the Ubuntu Store, a feature that also landed in the Wily branch.

Various issues with the thumbnailer have been patches as well, as the team managed to replace file descriptors passed via D-Bus with calls to AppArmor. More stress testing has been done for the thumbnailer, as well as for the applications that use it, and the Ubuntu Touch team plans a call for testing next week.

Snappy Scope now works for downloading and installing snap packages

Moreover, several issues have been addresses, such as the non-functional alarms, an issues that occurred after the upgrade to the OTA-4 software update released earlier this week, as well as the problem with unlocking SIM cards in arale devices. These two fixes should arrive in the next OTA, along with many other workarounds.

Last but not least, the Online Accounts API version 2 from the Go Bindings for Scopes will soon be supported in Ubuntu Touch, and a lot of work has been done for the upcoming Snappy Scope, which can already be used for downloading and installing snap packages.

Article source: http://news.softpedia.com/news/Ubuntu-Touch-Gets-Automatic-Refunds-for-All-Purchased-Apps-484822.shtml

Entroware’s Apollo Is a Superb White Laptop Powered by Ubuntu and Ubuntu …

Entroware has recently forged a partnership with the Ubuntu MATE project to help them ship laptops powered by this operating system and the laptop called Apollo that will definitely turn some heads.

Entroware has already presented a new Linux mini-PC powered by Ubuntu 15.04 and Ubuntu MATE 15.04 named Aura, but now they are releasing a laptop that comes with the same operating system, and it looks great. It’s a little small, but it can be configured, and numerous variations are available.

More and more companies are choosing Linux distros to ship with their hardware and it’s easy to understand why. Linux OSes, like Ubuntu and Ubuntu MATE, are pretty easy to use by anyone, even beginners, and they are the perfect choice. They also keep the cost of the hardware down as the company doesn’t have to include the price of Windows.

Entroware’s Apollo looks great

Entroware’s deal with Ubuntu MATE is the first of its kind with the team behind the OS, but it shows just how much confidence the company puts into an OS that’s barely a year old. In any case, this is not the only Linux-powered laptop made available by Entroware, nor is it the cheapest or the most expensive. It is, however, the best looking.

The cheapest version of this 13.3-inch laptop includes an Intel Core i3 5010U 2.1 GHz processor, 4GB of memory at 1600MHz, a 500GB HDD, regular networking features, and a return guarantee for dead pixels. You can also get an Intel Core I7 5500U at 2.4 GHz, but that will change the price.

“Apollo is our latest addition to the Ubuntu laptop range. From just £499 and shipping with the latest Broadwell CPUs, this is the must have Ultrabook for Linux enthusiasts,” reads the official website.

Entroware is an UK Linux only hardware supplier, and at this point it’s the only one having Ubuntu MATE as an option.

Article source: http://news.softpedia.com/news/entroware-s-apollo-is-a-superb-white-laptop-powered-by-ubuntu-and-ubuntu-mate-484925.shtml

How to Change the Folder Color in Ubuntu – Softpedia

One of the most requested features for Ubuntu is the ability to change the color of the folders, but that’s not something that will land in Nautilus anytime soon. The good news is that there is a little tool out there that can do the job just as well.

Linux users like to change the way their desktop looks and acts, and they can do pretty much anything they want to, for the most part. There are some limitations of course, but most of the time it’s just the developer’s lack of time to deal with a certain feature. This was made very clear in the case of Ubuntu, which already got a few requests regarding this particular feature.

Ubuntu devs marked this as “won’t fix,” which means it’s not happening, at least not anytime soon. Users went upstream and tried to request this feature in Nautilus (from the GNOME stack), but it wasn’t a no go. Fortunately, sometimes the community is well ahead of the developers and Marcos Costales has built Folder Color to fix this issue.

Folder Color works in most distros

If you have Ubuntu, Debian, Mint, openSUSE, Arch Linux, or pretty much anything that has Nautilus, Nemo or the Caja File Browser, then you’ll be able to make all the changes you want to the folders. We’ll focus on Ubuntu since many distros have already implemented this tool. We’re looking at you, Ubuntu MATE.

All you need to do in order to get the application is to enter a few commands in a terminal near you. You will need to be root, but that’s pretty well understood:

Now, when you’re opening a Nautilus (Files), you will find a Folder Color entry. Also, it’s worth pointing out that Folder Color works with the Numix, Vibrancy Colors, and Vivacious Colors themes.

Enjoy!

Article source: http://news.softpedia.com/news/how-to-change-the-folder-color-in-ubuntu-484932.shtml

BQ Aquaris E5 HD Ubuntu Edition now available to order from online store for …

The BQ Aquaris E5 HD Ubuntu Edition is now available for purchase, just in time for Father’s Day.

Previously, the BQ Aquaris E5 HD Ubuntu Edition was only available for pre-order. Starting June 18, the official Ubuntu Twitter account announced the availability of the latest smartphone running on Ubuntu OS.

However, users who would like to purchase the phone for immediate use may not be able to do, as orders starting today will only be processed by BQ on June 22, and will even take a few more days before the buyer receives the purchased phone. Additionally, the BQ Aquaris E5 HD Ubuntu Edition is only available in countries in the European Union, Norway and Switzerland.

The BQ Aquaris E5 HD Ubuntu Edition runs on 1.3GHZ quad-core MediaTek Cortex A7 CPU with Mali 400 GPU. It sports a 5-inch capacitive IPS display with 1280×720 HD resolution, 16:9 aspect ratio and 294 HDPI, all equipped with Dragontrail Protection Glass. The said display protection technology rivals the Corning Gorilla Glass and also offers strength and screen resistance against scratch and damage. This technology has been used on some Sony Xperia Z series smartphones and XOLO smartphones too.

The BQ Aquaris E5 HD Ubuntu Edition also has a 13 megapixel rear camera with dual-lens flash, and a 5-megapixel front camera for selfies and video calling/video chatting.

It supports the standard 3.5mm headphone jack, for easier multimedia enjoyment. It also supports various video, audio, images and text formats such .avi, .mkv, .mov, .pdf, .txt,without the use of a downloaded application. The device runs with 1GB worth of RAM, and 16GB of built-in internal storage, with support for an external microSD card expansion of up to 32GB. The Ubuntu-booting smartphone is powered by a 2500mAh Lipo battery.

The BQ Aquaris E5 HD Ubuntu Edition is available at the BQ store for €199.90.

Article source: http://www.vinereport.com/article/bq.aquaris.e5.hd.ubuntu.edition.now.available.for.199.90.at.the.bq.store/968.htm

Someone Tries to Sell Ubuntu GNOME Linux OS on Craigslist for $30 – Softpedia

In some amusing news, it would appear that someone is trying to make money from open source by selling a GNU/Linux operating system on Craigslist for the sum of $30 (€26).

The ad, entitled “Linux Ubuntu (GNOME) OS System – $30 (Fayetteville, Nc),” was posted in the “computers – by owner” section of the Craigslist classified advertisements website in Fayetteville, North Carolina, United States of America.

“This Not Windows But It runs smooth. More Like Apple mac os x Type. Linux Operating System. Just Boot from Start Up Screen Or Desktop,” reads the ad posted by the owner on Craigslist.

So it looks to us that the respective person is trying to sell an Ubuntu GNOME distribution, but he or she fails to offer more details about the version of the operating system and shipping method.

While some argue that it may or may not be illegal to sell a Linux OS, maybe the seller is trying to offer the Ubuntu GNOME distribution on a USB flash drive, which might explain the sum of $30 (€26).

However, we want to inform everyone attempting to buy this that the Ubuntu GNOME Linux operating system is available for download for free on the ubuntugnome.org website, and you can make your own bootable USB key quite easily.

Article source: http://linux.softpedia.com/blog/Someone-Tries-to-Sell-Ubuntu-GNOME-Linux-OS-on-Craigslist-for-30-484867.shtml

Mangaka Nyu Is Out, the Gorgeous Ubuntu-Based Distro for Anime and Manga …

That was fast! Animesoft International, the developers of the beautiful Mangaka Linux distribution have just announced that the final version of the Nyu edition is now available for download for users worldwide.

Using elementary OS’ gorgeous Pantheon desktop environment, the Mangaka Nyu distro now sports an awesome dark theme that makes the entire operating system look more professional. As expected, the latest software aimed at the Japanese anime and manga communities have been included, along with the upstream updates from Ubuntu 14.04 LTS (Trusty Tahr), on which Mangaka Nyu is based.

“After a month of development containing the last 64bit Linux image, various bug-fix and software implementation, we reached the final stage of our 2gb DVD of LINUX MANGAKA NYU in a focus of a real multimedia Linux distribution with almost needed contents for our Anime Manga community in customization, tools, beauty, simplicity, free, lightweight,” says Anime International in today’s announcement.

Mangaka Koi is coming later this year

Anime International urges all users who love anime and manga, as well as the Ubuntu Linux operating system and elementary OS’ desktop environment, to try their Mangaka Nyu distribution today. The OS includes all sorts of applications for fandubbing, fansubbing, 2D graphical creations, as well as multimedia playback and web browsing. It is supported with security patches and software updates until  the year 2019.

For the best performance, Anime International recommends all users to install the Mangaka Nyu operating system with the following setup: 1GB SWAP partition, 1GB EXT4 /boot partition, and 9GB Btrfs root partition. Also, users are being informed that they should turn off the update and third-party software download during the installation process of Mangaka Nyu.

Later this year, Anime International will release the next major version of the distribution, Mangaka Koi. An Alpha version will be ready for testing in the coming months, so stay close for more details so you don’t miss anything related to the best looking Linux distro for anime and manga fans. Download Mangaka Nyu right now from Softpedia.

Article source: http://news.softpedia.com/news/Mangaka-Nyu-Is-Out-the-Gorgeous-Ubuntu-Based-Distro-for-Anime-and-Manga-Fans-484879.shtml

BQ Aquaris E5 HD Ubuntu Edition available at BQ store for €199.90

The BQ Aquaris E5 HD Ubuntu Edition is now available for purchase, just in time for Father’s Day.

Previously, the BQ Aquaris E5 HD Ubuntu Edition was only available for pre-order. Starting June 18, the official Ubuntu Twitter account announced the availability of the latest smartphone running on Ubuntu OS.

However, users who would like to purchase the phone for immediate use may not be able to do, as orders starting today will only be processed by BQ on June 22, and will even take a few more days before the buyer receives the purchased phone. Additionally, the BQ Aquaris E5 HD Ubuntu Edition is only available in countries in the European Union, Norway and Switzerland.

The BQ Aquaris E5 HD Ubuntu Edition runs on 1.3GHZ quad-core MediaTek Cortex A7 CPU with Mali 400 GPU. It sports a 5-inch capacitive IPS display with 1280×720 HD resolution, 16:9 aspect ratio and 294 HDPI, all equipped with Dragontrail Protection Glass. The said display protection technology rivals the Corning Gorilla Glass and also offers strength and screen resistance against scratch and damage. This technology has been used on some Sony Xperia Z series smartphones and XOLO smartphones too.

The BQ Aquaris E5 HD Ubuntu Edition also has a 13 megapixel rear camera with dual-lens flash, and a 5-megapixel front camera for selfies and video calling/video chatting.

It supports the standard 3.5mm headphone jack, for easier multimedia enjoyment. It also supports various video, audio, images and text formats such .avi, .mkv, .mov, .pdf, .txt,without the use of a downloaded application. The device runs with 1GB worth of RAM, and 16GB of built-in internal storage, with support for an external microSD card expansion of up to 32GB. The Ubuntu-booting smartphone is powered by a 2500mAh Lipo battery.

The BQ Aquaris E5 HD Ubuntu Edition is available at the BQ store for €199.90.

Article source: http://www.vinereport.com/article/bq.aquaris.e5.hd.ubuntu.edition.now.available.for.199.90.at.the.bq.store/968.htm

Canonical Apologizes for Linux Kernel Regression in Ubuntu, Patch Released …

On June 21, Canonical sent out new Ubuntu Security Notices for users of the Ubuntu 14.10, Ubuntu 14.04 LTS, and Ubuntu 12.04 LTS, informing them about a patch for a regression introduced by the previous kernel updated, which we reported last week.

It would appear that the Linux kernel update released on June 15, 2015, which was supposed to patch the CVE-2015-1328 bug related to a privilege escalation when using OverlayFS mounts inside of user namespaces, introduced a regression.

The regression was introduced into the Linux kernel’s OverlayFS filesystem and it could create a kernel panic by removing the directory that existed only on the lower layer.

The Ubuntu 14.10 (Utopic Unicorn), Ubuntu 14.04 LTS (Trusty Tahr), and Ubuntu 12.04 LTS (Precise Pangolin) operating system are currently affected by the regression, and Canonical urges all users to upgrade as soon as possible (see below for details).

“The Fix for CVE-2015-1328 introduced a regression into the Linux kernel’s overlayfs file system. The removal of a directory that only exists on the lower layer results in a kernel panic,” says Canonical. “We apologize for the inconvenience.”

All Ubuntu 14.10, 14.04 LTS, and 12.04 LTS users must upgrade immediately

In order to patch the said regression, users of the Ubuntu 14.10, Ubuntu 14.04 LTS, and Ubuntu 12.04 LTS operating systems must upgrade their kernel packages immediately to linux-image-3.16.0-41 (3.16.0-41.57) for Ubuntu 14.10, linux-image-3.13.0-55 (3.13.0-55.94) for Ubuntu 14.04 LTS, and linux-image-3.2.0-86 (3.2.0-86.124) for Ubuntu 12.04 LTS.

To update, you must open the Unity Dash, search for the Software Updater utility, open it, wait for the application to refresh the software sources and find available updates, then apply any existing updates. After a successful update process, you must reboot your computers for the new kernel packages to become active. More details can be found at https://wiki.ubuntu.com/Security/Upgrades.

Article source: http://news.softpedia.com/news/Canonical-Apologizes-for-Linux-Kernel-Regression-in-Ubuntu-Patch-Released-484846.shtml

Canonical Apologizes for Linux Kernel Regression in Ubuntu, Patch Released …

On June 21, Canonical sent out new Ubuntu Security Notices for users of the Ubuntu 14.10, Ubuntu 14.04 LTS, and Ubuntu 12.04 LTS, informing them about a patch for a regression introduced by the previous kernel updated, which we reported last week.

It would appear that the Linux kernel update released on June 15, 2015, which was supposed to patch the CVE-2015-1328 bug related to a privilege escalation when using OverlayFS mounts inside of user namespaces, introduced a regression.

The regression was introduced into the Linux kernel’s OverlayFS filesystem and it could create a kernel panic by removing the directory that existed only on the lower layer.

The Ubuntu 14.10 (Utopic Unicorn), Ubuntu 14.04 LTS (Trusty Tahr), and Ubuntu 12.04 LTS (Precise Pangolin) operating system are currently affected by the regression, and Canonical urges all users to upgrade as soon as possible (see below for details).

“The Fix for CVE-2015-1328 introduced a regression into the Linux kernel’s overlayfs file system. The removal of a directory that only exists on the lower layer results in a kernel panic,” says Canonical. “We apologize for the inconvenience.”

All Ubuntu 14.10, 14.04 LTS, and 12.04 LTS users must upgrade immediately

In order to patch the said regression, users of the Ubuntu 14.10, Ubuntu 14.04 LTS, and Ubuntu 12.04 LTS operating systems must upgrade their kernel packages immediately to linux-image-3.16.0-41 (3.16.0-41.57) for Ubuntu 14.10, linux-image-3.13.0-55 (3.13.0-55.94) for Ubuntu 14.04 LTS, and linux-image-3.2.0-86 (3.2.0-86.124) for Ubuntu 12.04 LTS.

To update, you must open the Unity Dash, search for the Software Updater utility, open it, wait for the application to refresh the software sources and find available updates, then apply any existing updates. After a successful update process, you must reboot your computers for the new kernel packages to become active. More details can be found at https://wiki.ubuntu.com/Security/Upgrades.

Article source: http://news.softpedia.com/news/Canonical-Apologizes-for-Linux-Kernel-Regression-in-Ubuntu-Patch-Released-484846.shtml