Old 01-23-2019, 06:38 PM   #1
Glennbo
Human being with feelings
 
Glennbo's Avatar
 
Join Date: Mar 2008
Location: Planet Earth
Posts: 3,279
Default Update your Linux NOW!!!

One of Linux's core software installation programs, apt, was recently found to have a serious security hole. It's now patched.

https://www.zdnet.com/article/nasty-...-in-linux-apt/
__________________
Glennbo
Hear My Music - Click Me!!!
--
Glennbo is offline   Reply With Quote
Old 01-23-2019, 06:48 PM   #2
JamesPeters
Human being with feelings
 
JamesPeters's Avatar
 
Join Date: Aug 2011
Location: Near a big lake
Posts: 2,365
Default

My distro had already notified me of the update, and I installed it. This is one of the reasons I wanted to use a distro that's updated frequently, just in case.
__________________
http://petersamplification.com
Core i3-6300 - MSI B150M Mortar - 8 GB RAM - Asus Xonar DX - MX Linux (MX-18.3_x64) - REAPER for Linux
JamesPeters is offline   Reply With Quote
Old 01-23-2019, 07:28 PM   #3
Glennbo
Human being with feelings
 
Glennbo's Avatar
 
Join Date: Mar 2008
Location: Planet Earth
Posts: 3,279
Default

Did you do these anti-redirects first?

apt -o Acquire::http::AllowRedirect=false update
apt -o Acquire::http::AllowRedirect=false upgrade

I did it on my wife's machine, since she lives on Facebook and other places that I don't go and don't trust, but I just did a straight up update followed by a sudo apt-get update and sudo apt-get upgrade on my other three Linux machines.
__________________
Glennbo
Hear My Music - Click Me!!!
--
Glennbo is offline   Reply With Quote
Old 01-23-2019, 07:36 PM   #4
JamesPeters
Human being with feelings
 
JamesPeters's Avatar
 
Join Date: Aug 2011
Location: Near a big lake
Posts: 2,365
Default

No. The update was yesterday and I had only noticed there was an Apt package to update (not the reason for it). So I let it update as usual. I assume it's fine.
__________________
http://petersamplification.com
Core i3-6300 - MSI B150M Mortar - 8 GB RAM - Asus Xonar DX - MX Linux (MX-18.3_x64) - REAPER for Linux
JamesPeters is offline   Reply With Quote
Old 01-23-2019, 08:02 PM   #5
Glennbo
Human being with feelings
 
Glennbo's Avatar
 
Join Date: Mar 2008
Location: Planet Earth
Posts: 3,279
Default

When I updated earlier tonight, I drilled down into the details of what was being updated to confirm that CVE-2019-3462 was being addressed. News of all this just popped late yesterday.

Looks like Apt v1.6.6 is what you want to be running.

I issued apt list --installed | grep apt to see what version I ended up with after updating.
__________________
Glennbo
Hear My Music - Click Me!!!
--

Last edited by Glennbo; 01-23-2019 at 08:14 PM.
Glennbo is offline   Reply With Quote
Old 01-23-2019, 08:47 PM   #6
JamesPeters
Human being with feelings
 
JamesPeters's Avatar
 
Join Date: Aug 2011
Location: Near a big lake
Posts: 2,365
Default

For Debian stable (Stretch) it's 1.4.9, and that's the version which I had updated to yesterday (around lunchtime).
__________________
http://petersamplification.com
Core i3-6300 - MSI B150M Mortar - 8 GB RAM - Asus Xonar DX - MX Linux (MX-18.3_x64) - REAPER for Linux

Last edited by JamesPeters; 01-23-2019 at 08:53 PM.
JamesPeters is offline   Reply With Quote
Old 01-23-2019, 09:12 PM   #7
Glennbo
Human being with feelings
 
Glennbo's Avatar
 
Join Date: Mar 2008
Location: Planet Earth
Posts: 3,279
Default

The one thing about Windows that I did like was that I know it inside and out, and how to check what's going on and what should be going on. I'm still learning the ropes with Linux and shit like this disturbs me way more than if it was a Windows thing.
__________________
Glennbo
Hear My Music - Click Me!!!
--
Glennbo is offline   Reply With Quote
Old 01-23-2019, 09:27 PM   #8
JamesPeters
Human being with feelings
 
JamesPeters's Avatar
 
Join Date: Aug 2011
Location: Near a big lake
Posts: 2,365
Default

I feel that way sometimes, except for the fact Linux systems aren't targeted for virus/malware nearly as much as Windows systems just as a matter of a numbers game. Plus it seems to get fixed pretty quickly anyway as long as you're using a relatively common distro. This bug has existed for a while and it probably hasn't affected many people, if any.
__________________
http://petersamplification.com
Core i3-6300 - MSI B150M Mortar - 8 GB RAM - Asus Xonar DX - MX Linux (MX-18.3_x64) - REAPER for Linux
JamesPeters is offline   Reply With Quote
Old 01-23-2019, 09:33 PM   #9
Glennbo
Human being with feelings
 
Glennbo's Avatar
 
Join Date: Mar 2008
Location: Planet Earth
Posts: 3,279
Default

With so many of us defecting to Linux though, especially Windows 7 die hards that will never go to Windows 10, Linux is becoming more mainstream every day. I switched my wife's machine out while she was at work one day last month, and it's like she hardly even noticed that she was running a totally different OS now. To me, that speaks volumes about the mainstream appeal of Linux!
__________________
Glennbo
Hear My Music - Click Me!!!
--
Glennbo is offline   Reply With Quote
Old 01-23-2019, 10:41 PM   #10
JamesPeters
Human being with feelings
 
JamesPeters's Avatar
 
Join Date: Aug 2011
Location: Near a big lake
Posts: 2,365
Default

I think when the percentage of computer users running Linux (not counting businesses using it for servers, supercomputers, etc.) comes significantly close to surpassing single digits, it might be more of a concern.
__________________
http://petersamplification.com
Core i3-6300 - MSI B150M Mortar - 8 GB RAM - Asus Xonar DX - MX Linux (MX-18.3_x64) - REAPER for Linux
JamesPeters is offline   Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -7. The time now is 11:37 PM.


Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2019, vBulletin Solutions Inc.