Canonical released a new Linux kernel update for the long-term supported Ubuntu 14.04 LTS (Trusty Tahr) operating system series to address a recently discovered security vulnerability.
A security issue affects the Linux 3.13 kernel of the Ubuntu 14.04 LTS (Trusty Tahr) operating system series and its derivatives, including Kubuntu, Xubuntu, Lubuntu, Ubuntu Kylin, Ubuntu Studio, Mythbuntu, and others, allowing attackers to run programs as an administrator.
The vulnerability is a race condition (CVE-2019-6133) discovered by Jann Horn of Google Project Zero in Linux kernel’s fork() system call, which could allow a local attacker to gain access to services storing cache authorizations and run programs with administrative privileges.
“The system could be made to run programs as an administrator. Jann Horn discovered a race condition in the fork() system call in the Linux kernel. A local attac… (read more)
from Softpedia News / Linux https://news.softpedia.com/news/canonical-releases-minor-linux-kernel-security-update-for-ubuntu-14-04-lts-525308.shtml