kos's questions -ubuntu

kos

Asked: 2019-07-30 18:34:14 +0800 CST

How to update binutils to pick up security patches on Ubuntu Xenial

I have several servers running with Xenial (16.04 LTS). I ran a security scanning tool (AWS Inspector) that shows a list of unpatched CVE vulnerabilities on the server. A lot of them relate to binutils, for example https://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-6323.html

I can see that on that Canonical link above the package update is marked as needed, however I do:

sudo apt-get update
sudo apt-get upgrade --dry-run

I see no patches. I have recently run an upgrade successfully, so nothing new to pick up. But binutils is still triggering the alert and is at version 2.26.1-1ubuntu1~16.04.8.

Is there a way to upgrade binutils to patch these vulnerabilities on Xenial? Or is this a false alarm?

How to update binutils to pick up security patches on Ubuntu Xenial

How to install Google Chrome

Is there a command to list all users? Also to add, delete, modify users, in the terminal?

How to delete a non-empty directory in Terminal?

How to unzip a zip file from the Terminal?

How can I copy the contents of a folder to another folder in a different directory using terminal?

How do I install a .deb file via the command line?

How do I run .sh scripts?

How do I install a .tar.gz (or .tar.bz2) file?

How to list all installed packages

Unable to lock the administration directory (/var/lib/dpkg/) is another process using it?