Difference between revisions of "Security Updates"

From OSNEXUS Online Documentation Site
Jump to: navigation, search
m
m (QuantaStor 3.x Security Notifications)
Line 3: Line 3:
 
== QuantaStor 3.x Security Notifications ==  
 
== QuantaStor 3.x Security Notifications ==  
  
Please see the Ubuntu 12.04 LTS security notifications for latest information about security updates:
+
Please see the security notifications and latest detailed information on Ubuntu 12.04 LTS:
 
http://www.ubuntu.com/usn/precise/
 
http://www.ubuntu.com/usn/precise/
  
Line 14: Line 14:
 
sudo apt-get upgrade
 
sudo apt-get upgrade
 
</pre>
 
</pre>
 
  
 
== OpenSSL Security Updates and fix for Heartbleed CVE-2014-0076, CVE-2014-0160 and POODLE CVE-2014-3566 and OpenSSL CVE-2014-3513, CVE-2014-3568, CVE-2014-3567==
 
== OpenSSL Security Updates and fix for Heartbleed CVE-2014-0076, CVE-2014-0160 and POODLE CVE-2014-3566 and OpenSSL CVE-2014-3513, CVE-2014-3568, CVE-2014-3567==

Revision as of 13:43, 20 May 2015

QuantaStor uses the Ubuntu Server LTS linux distributions as a Linux OS basis. QuantaStor also utilizes the security patches packaged by Canonical to address the needs of customers to patch various parts of the operating system to ensure security and stability of the system.

QuantaStor 3.x Security Notifications

Please see the security notifications and latest detailed information on Ubuntu 12.04 LTS: http://www.ubuntu.com/usn/precise/

We recommend customers perform periodic auditing of their systems and install any and all security updates. It is highly recommended that systems are updated to the latest patched before being initially deployed.

To apply these updates you should login to the system as the administrator 'qadmin' account and run the following commands:

sudo apt-get update
sudo apt-get upgrade

OpenSSL Security Updates and fix for Heartbleed CVE-2014-0076, CVE-2014-0160 and POODLE CVE-2014-3566 and OpenSSL CVE-2014-3513, CVE-2014-3568, CVE-2014-3567

Ubuntu Security update notifications:

http://www.ubuntu.com/usn/usn-2165-1/

http://www.ubuntu.com/usn/usn-2367-1/

http://www.ubuntu.com/usn/usn-2385-1/

You can upgrade your OpenSSL release to the latest which includes the latest fixes with the below console commands as the 'qadmin' administrative user:

sudo apt-get update
sudo apt-get install openssl libssl1.0.0

Bash Security Updates 'SHELLSHOCK' CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187

Ubuntu Security update notifications:

http://www.ubuntu.com/usn/usn-2362-1/

http://www.ubuntu.com/usn/usn-2363-2/

http://www.ubuntu.com/usn/usn-2364-1/

You can upgrade your Bash release to the latest which includes the security fixes for bash with the below console commands as the 'qadmin' administrative user:

sudo apt-get update
sudo apt-get install bash