Difference between revisions of "Security Updates"

From OSNEXUS Online Documentation Site
Jump to: navigation, search
m (Fix for Heartbleed CVE-2014-0160 CVE-2014-0076)
m
Line 1: Line 1:
QuantaStor uses the Ubuntu Server linux distribution as a basis and uses the security patches packaged by Canonical to address the need to patch various parts of the operating system for security and stability of the system.  To apply these updates you need to login to the system as the administrator 'qadmin' account and then run the following command:
+
QuantaStor uses the Ubuntu Server linux distribution as a basis and utilizes the security patches packaged by Canonical to address the needs of customers to patch various parts of the operating system for security and stability of the system.   
 +
 
 +
All Security Notifications for Ubuntu are provided at the below link:
 +
http://www.ubuntu.com/usn/
 +
 
 +
We recommend customers perform periodic auditing of their systems and install any and all security updates. It is highly recommended that systems are updated to the latest patched before being initially deployed.
 +
 
 +
To apply these updates you should login to the system as the administrator 'qadmin' account and run the following commands:
  
 
<pre>
 
<pre>

Revision as of 11:00, 29 September 2014

QuantaStor uses the Ubuntu Server linux distribution as a basis and utilizes the security patches packaged by Canonical to address the needs of customers to patch various parts of the operating system for security and stability of the system.

All Security Notifications for Ubuntu are provided at the below link: http://www.ubuntu.com/usn/

We recommend customers perform periodic auditing of their systems and install any and all security updates. It is highly recommended that systems are updated to the latest patched before being initially deployed.

To apply these updates you should login to the system as the administrator 'qadmin' account and run the following commands:

sudo apt-get update
sudo apt-get upgrade


Fix for Heartbleed CVE-2014-0076, CVE-2014-0160

Ubuntu Security update notification: http://www.ubuntu.com/usn/usn-2165-1/

You can upgrade your OpenSSL release to the latest which includes the fixes for CVE-2014-0076, CVE-2014-0160 'heartbleed' with the below console commands as the 'qadmin' administrative user:

sudo apt-get update
sudo apt-get install openssl

Fix for Bash CVE-2014-6271

Ubuntu Security update notification: http://www.ubuntu.com/usn/usn-2362-1/

You can upgrade your Bash release to the latest which includes the fix for CVE-2014-6271 'shellshock' with the below console commands as the 'qadmin' administrative user:

sudo apt-get update
sudo apt-get install bash