|
|
|
|
|||||||
| Forums | Portal | Register | Forum Rules | FAQ | Contribute | Members List | Arcade | Search | Today's Posts | Mark Forums Read |
| Security Advisories (RSS) UNIX and Linux Security Advisories Via RSS News |
More UNIX and Linux Forum Topics You Might Find Helpful
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| USN-608-1: KDE vulnerability | iBot | Security Advisories (RSS) | 0 | 05-06-2008 08:30 AM |
| S-067: Tk Vulnerability | iBot | Security Advisories (RSS) | 0 | 02-22-2008 02:20 PM |
| USN-579-1: Qt vulnerability | iBot | Security Advisories (RSS) | 0 | 02-21-2008 07:30 AM |
| S-121: VFS Vulnerability | iBot | Security Advisories (RSS) | 0 | 01-17-2008 04:10 PM |
| S-119: apt-listchanges Vulnerability | iBot | Security Advisories (RSS) | 0 | 01-17-2008 01:40 PM |
 |
|
|
Submit Tools | LinkBack | Thread Tools | Display Modes |
|
#1
01-18-2008
|
||||
|
||||
|
USN-572-1: apt-listchanges vulnerability
Referenced CVEs:
CVE-2008-0302 Description: =========================================================== Ubuntu Security Notice USN-572-1 January 18, 2008 apt-listchanges vulnerability CVE-2008-0302 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 7.04 Ubuntu 7.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 7.04: apt-listchanges 2.72ubuntu6.1 Ubuntu 7.10: apt-listchanges 2.74ubuntu3.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: Felipe Sateler discovered that apt-listchanges did not use safe paths when importing additional Python libraries. A local attacker could exploit this and execute arbitrary commands as the user running apt-listchanges. More... 
|
||||
| Google The UNIX and Linux Forums |
| Forum Sponsor | ||
|
|
Linear Mode
