Canonical Releases Important Ubuntu Kernel Live Patch to Fix L1TF, SpectreRSB
Canonical released a new kernel live patch for all its supported Ubuntu Linux operating systems to address several critical security vulnerabilities discovered by various researchers lately.
Available for the Ubuntu 18.04 LTS (Bionic Beaver), Ubuntu 16.04 LTS (Xenial Xerus), and Ubuntu 14.04 LTS (Trusty Tahr) operating system series, the new Linux kernel livepatch is rolling out now to all subscribers of the Canonical Livepatch Service. It patches a total of seven security flaws, including the well-known L1 Terminal Fault (L1TF)/Foreshadow and SpectreRSB vulnerabilities.
The two L1FT vulnerabilities fixed in this new kernel livepatch are CVE-2018-3620 and CVE-2018-3646, but it also addresses a flaw that reduced the effectiveness of Spectre Variant 2 mitigations for paravirtual guests (<a href… (read more)