Language Selection

English French German Italian Portuguese Spanish

Security: DHCP, System Updates, and Ubuntu Blobs Store

Filed under
Security
  • Protect your Fedora system against this DHCP flaw

    A critical security vulnerability was discovered and disclosed earlier today in dhcp-client. This DHCP flaw carries a high risk to your system and data, especially if you use untrusted networks such as a WiFi access point you don’t own. Read more here for how to protect your Fedora system.

    Dynamic Host Control Protocol (DHCP) allows your system to get configuration from a network it joins. Your system will make a request for DHCP data, and typically a server such as a router answers. The server provides the necessary data for your system to configure itself. This is how, for instance, your system configures itself properly for networking when it joins a wireless network.

    However, an attacker on the local network may be able to exploit this vulnerability. Using a flaw in a dhcp-client script that runs under NetworkManager, the attacker may be able to run arbitrary commands with root privileges on your system. This DHCP flaw puts your system and your data at high risk. The flaw has been assigned CVE-2018-1111 and has a Bugzilla tracking bug.

  • Security updates for Tuesday
  • Potentially Malicious Bytecoin Miner Removed from the Ubuntu Snap Store
  • Canonical on trust and security in the Snap Store

    Here's a posting from Canonical concerning the cryptocurrency-mining app that was discovered in its Snap Store.

  • Canonical finds hidden crypto-miners in the Linux Snap app store

    Last Friday, Canonical, the developer of the popular Ubuntu operating system and owner of the Snapcraft app store, spotted one application surreptitiously mining cryptocurrencies in the background.

More in Tux Machines

Type Title Author Replies Last Postsort icon
Story today's howtos Roy Schestowitz 1 20/05/2018 - 8:59pm
Story Introduction To VPS Or Virtual Private Server Mohd Sohail 20/05/2018 - 8:31pm
Story Raspberry Pi Series Part 4: Ten Raspberry Pi Linux Distributions To Get You Going In 2018 Mohd Sohail 20/05/2018 - 6:38pm
Story Plasma 5.12.5, Applications 18.04.1 and Frameworks 5.46.0 by KDE now available in Chakra Roy Schestowitz 1 20/05/2018 - 2:04pm
Story Linux 4.16.10, 4.14.42, and 4.9.101 Roy Schestowitz 20/05/2018 - 2:03pm
Story today's leftovers Roy Schestowitz 20/05/2018 - 12:16pm
Story Steam Controller Kernel Driver Is Landing In The Linux 4.18 Kernel Roy Schestowitz 20/05/2018 - 11:40am
Story Video of AsteroidOS Roy Schestowitz 20/05/2018 - 11:38am
Story KDevelop 5.2.2 and 5.2.3 released Roy Schestowitz 20/05/2018 - 11:24am
Story FreeOffice 2018 Release is Seamlessly Compatible With MS Office on Linux itsfoss 20/05/2018 - 8:35am