Your toolshed 4 Online Living

Ubuntu 18.04.6 LTS Released with Critical Security Fix

For more great content like this see Original article

ubuntu 18.04 LTS on a laptop

No, you’re not misreading the title, Ubuntu 18.04.6 LTS is available to download.

This (unplanned) point release arrives with one key — pun intended — purpose: to make Ubuntu 18.04 LTS bootable again on Secure Boot-enabled systems.

“Unlike previous point releases, 18.04.6 is a refresh of the amd64 and arm64 installer media after the key revocation related to the BootHole vulnerability, re-enabling their usage on Secure Boot enabled systems,” writes Canonical’s Łukasz Zemczak explains in a release announcement.

The BootHole vulnerability is explained in more detail on the Ubuntu blog as well on the Ubuntu Security Team Wiki, excerpt below:

“It was discovered that multiple vulnerabilities existed in GNU GRUB, that could potentially lead to the ability to bypass UEFI Secure Boot restrictions. A local attacker with administrative privileges (or with physical access to the system) could use this issue to circumvent GRUB2 module signature checking, resulting in the ability to load arbitrary GRUB2 modules that have not been signed by a trusted authority and hence bypass UEFI Secure Boot.”

As part of the remediation the 2012 Ubuntu signing key and two GRUB2 binaries were added to the UEFI DBX revocation list in August 2020.

The newly spun images carries patched, safe, and approved versions of the various affected components, including GRUB2. The update also includes some other security updates but, as it’s an LTS, the ‘focus on maintaining stability and compatibility’ remains paramount.

Ubuntu 18.04 LTS is supported with security, maintenance, and select app updates until 2023.



Download Ubuntu 18.04.6 LTS (64-bit .iso)

Those who already run Ubuntu 18.04 LTS and have kept on top of updates do not need to reinstall using this image.

Related articles

Ken Saunders

Freelancer, Gadget collector, Biohacker

Ken Saunders is a freelance writer, gadget collector and Biohacker. Kens’ professional background is in Information Technology as well as Health and Wellness. His experience has given him a broad base from which to approach many topics. He especially enjoys researching and writing articles on the topics of Technology, Food, and all things Freelancing. His articles have appeared in many online sites, including Lifehack.media, Andrew Christian, Alltherooms.com and Vocal.media.You can learn more about his services at http://www.ken-saunders.info.

You can always reach me here

Ken Saunders

My Personal Favorites

Sponsor

Elementor

Explore

Hardware

Services

Gadgets

ARE YOU IN?

Subscribers already enjoy our premium stuff.

Subscribe now

%d bloggers like this: