Choose style:

Author Topic: Advisory (17 Feb 2016) -- Update your Peppermint system (CVE-2015-7547)  (Read 2103 times)

0 Members and 1 Guest are viewing this topic.

Online PCNetSpec

  • Administrator
  • Hero
  • *****
  • Posts: 26102
  • Karma: 2843
  • "-rw-rw-rw-" .. The Number Of The Beast
    • View Profile
    • PCNetSpec
  • Peppermint version(s): Peppermint 10
Because of a recently discovered vulnerability in glibc (all versions >= 2.9) which could allow remote code execution we're strongly advising people running Peppermint 3, 5, and 6 to update their system immediately.

Here's some info on the bug:
https://sourceware.org/bugzilla/show_bug.cgi?id=18665
and
http://www.ubuntu.com/usn/usn-2900-1/
and
http://www.eweek.com/security/linux-systems-patched-for-critical-glibc-flaw.html

A patch has been released for the above Peppermint versions, so running a full system update in the normal way will pull in the patched version of libc6 and fix you right up.

You can test if you already have the patched version by running:
Code: [Select]
dpkg -l | grep libc6

A Peppermint 3 system should have this version or higher - 2.15-0ubuntu10.13

A Peppermint 5 system should have this version or higher - 2.19-0ubuntu6.7

A Peppermint 6 system should have this version or higher - 2.19-0ubuntu6.7
« Last Edit: February 17, 2016, 08:24:38 pm by PCNetSpec »
WARNING: You are logged into reality as 'root' .. logging in as 'insane' is the only safe option.

Team Peppermint
PCNetSpec

Offline donwatson

  • Jr. Member
  • **
  • Posts: 32
  • Karma: 1
  • New Forum User
    • View Profile
  • Peppermint version(s): Peppermint 7
Re: Advisory (17 Feb 2016) -- Update your Peppermint system (CVE-2015-7547)
« Reply #1 on: February 18, 2016, 02:28:11 pm »
Thanks Mark,
My version shows 2.19-0ubuntu6.7

Online PCNetSpec

  • Administrator
  • Hero
  • *****
  • Posts: 26102
  • Karma: 2843
  • "-rw-rw-rw-" .. The Number Of The Beast
    • View Profile
    • PCNetSpec
  • Peppermint version(s): Peppermint 10
Re: Advisory (17 Feb 2016) -- Update your Peppermint system (CVE-2015-7547)
« Reply #2 on: February 18, 2016, 02:45:48 pm »
You're patched then Don :)
WARNING: You are logged into reality as 'root' .. logging in as 'insane' is the only safe option.

Team Peppermint
PCNetSpec

Offline spence

  • Trusted User
  • Veteran
  • *****
  • Posts: 1912
  • Karma: 189
  • peppermint user since 2010
    • View Profile
    • My MeWe profile
  • Peppermint version(s): Peppermint 10
Re: Advisory (17 Feb 2016) -- Update your Peppermint system (CVE-2015-7547)
« Reply #3 on: February 23, 2016, 02:54:36 pm »
guess this is what's gonna make me try harder to get p6 installed on the old '00 Compaq Presario M2000...

Code: [Select]
cpm@M2000 ~ $ dpkg -l | grep libc6
ii  libc6                                 2.11.1-0ubuntu7.21                              Embedded GNU C Library: Shared libraries
ii  libc6-i686                            2.11.1-0ubuntu7.21                              GNU C Library: Shared libraries [i686 optimi
spence
PeppermintOS 10 currently installed  on:
'16 Antec Aria rebuild
 '18 Asus VivoBook


Do not despair, grasshopper...
    with patience all will be revealed...
       Through pain, enlightenment will come.

Offline acer

  • Member
  • ***
  • Posts: 242
  • Karma: 28
    • View Profile
  • Peppermint version(s): Peppermint 9R x86/ 10 x64
Yeah, got the heads up on this elsewhere and updated straight away. Cheers