Happy Friday fellow Linux geeks! This week, high-severity vulnerabilities in Oracle VirtualBox and curl that could lead to privilege escalation attacks, Man-In-The-Middle attacks, and the compromise of sensitive data have also been fixed. An update for the Linux kernel that fixes seventeen important security bugs that threaten the security, integrity and availability of your systems has also been released. We encourage users to update immediately.

Read on to learn about how you can update your systems to obtain these fixes for your distribution. 

Have you customized your LinuxSecurity advisories based on the distro(s) you use? If not, we encourage you to do so now!

Yours in Open Source,

Brittany Signature 150 Esm W150

curl

The Discovery 

Multiple high-severity vulnerabilities have been found in curl.

Curl Esm W400

The Impact

These bugs could lead to the compromise of sensitive data and Man-In-The-Middle attacks, among other threats.

The Fix

All curl users should upgrade to the latest version to protect the privacy of their sensitive information and prevent potential security incidents.

Your Related Advisories:

[distro_list_1]

Oracle VirtualBox

The Discovery 

​​Multiple high-severity vulnerabilities have been discovered in Oracle VirtualBox.
Virtualbox Esm W186

The Impact

These flaws could result in privilege escalation from a guest to the host.

The Fix

All Oracle VirtualBox users should upgrade to the latest version to protect the security and integrity of their systems.

Your Related Advisories:

[distro_list_2]

Linux Kernel

The Discovery 

Seventeen important vulnerabilities have been found in the Linux kernel.

LinuxKernel Esm W206

The Impact

These bugs could result in buffer overflow attacks, denial of service (DoS) attacks, privilege escalation attacks, code execution, and memory leakage, among other threats.

The Fix

An update for the Linux kernel that fixes these critical issues is now available. We strongly recommend that you update now to protect against attacks leading to downtime and compromise.

Your Related Advisories:

[distro_list_3]