(CVE-2010-1173) Mario Mikocevic discovered that GFS2 did not correctly handle certainquota structures.A local attacker could exploit this to crash thesystem, leading to a denial of service.A local attacker could exploit this to readsensitive information, leading to a loss of privacy.(Only Ubuntu 9.10was affected.) (CVE-2010-1636) Dan Rosenberg discovered that GFS2 set_flags function did not correctlyvalidate permissions.The Red Hat Enterprise Linux kernel is custom-built by the Red Hat Enterprise Linux kernel team to ensure its integrity and compatibility with supported hardware.Before Red Hat releases a kernel, it must first pass a rigorous set of quality assurance tests.After a standard system update you need to reboot your computer to makeall the necessary changes. Done Building dependency tree Reading state information...
If you always want the newest version from a repo, get Fedora.
A package lands in the repository at a certain point of time before the official release of a Ubuntu version.
After that, Canonical may decide to add a new version to the repository, especially if there is a security-critical update in the new version, or if a new kernel requires some packages to be recompiled. For most packages though, development goes on, but nobody adds the new versions to the repository of the current Ubuntu version.
This made userspace applications vulnerable toexploits that would have been otherwise blocked due to non-executablememory protections.
(Ubuntu 10.04 LTS was not affected.) (CVE-2010-1451) Dan Rosenberg discovered that the btrfs clone function did not correctlyvalidate permissions.