| |||||||||||||||||||
Ubuntu alert USN-1962-1 (ubuntu-system-service)
========================================================================== Ubuntu Security Notice USN-1962-1 September 18, 2013 ubuntu-system-service vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 13.04 - Ubuntu 12.10 - Ubuntu 12.04 LTS Summary: ubuntu-system-service could be tricked into bypassing polkit authorizations. Software Description: - ubuntu-system-service: Dbus service to set various system-wide configurations Details: It was discovered that ubuntu-system-service was using polkit in an unsafe manner. A local attacker could possibly use this issue to bypass intended polkit authorizations. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 13.04: ubuntu-system-service 0.2.4.1 Ubuntu 12.10: ubuntu-system-service 0.2.3.1 Ubuntu 12.04 LTS: ubuntu-system-service 0.2.2.1 After a standard system update you need to reboot your computer to make all the necessary changes. References: http://www.ubuntu.com/usn/usn-1962-1 CVE-2013-1062 Package Information: https://launchpad.net/ubuntu/+source/ubuntu-system-servic... https://launchpad.net/ubuntu/+source/ubuntu-system-servic... https://launchpad.net/ubuntu/+source/ubuntu-system-servic... -- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security... (Log in to post comments)
|
|||||||||||||||||||