How to fix CVE-2016-5195 on ubuntu-server 14.04.2 LTS - Ask Ubuntu
there problem bug cve-2016-5195 fixed following this guide , used commands:
sudo apt-get update sudo apt-get upgrade sudo apt-get dist-upgrade
after that,i rebooted server, , version of system ubuntu 14.04.5 lts.
then, followed this guide test bug, found bug still exists.
how mitigate this?
here output kernel version:
root@ubuntu:~# uname -r 3.16.0-30-generic
as suspected , comments confirm, you're using old "hwe" update hasn't been supported long time. need upgrade.
in case you're not sure i'm rambling on about, long term support (lts) releases of ubuntu have update packs add new hardware support bundling kernel , x stack of newer ubuntu releases.
in case linux 3.16 in utopic (14.10). bundled 14.04.2. was supported long main release of utopic, means it's been end-of-life since july 2015. erk.
you have few options:
upgrade the latest hwe 14.04, 14.04.5, based on 16.04 xenial , supported until april 2019. that's using newer kernel may not work on hardware. installing simple:
sudo apt-get install --install-recommends linux-generic-lts-xenial
you downgrade kernel shipped 14.04.1. based on initial release of 14.04 , supported april 2019 too. because it's older might not support hardware. testing ;)
if #1 works, might want consdier upgrading 16.04 proper. next lts after 14.04 , supported 2020. update other stuff. biggest change server users init system has changed upstart systemd. takes getting used if have custom startup scripts.
Comments
Post a Comment