| |||||||||||||||||||
Ubuntu alert USN-1963-1 (usb-creator)
========================================================================== Ubuntu Security Notice USN-1963-1 September 18, 2013 usb-creator vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 13.04 - Ubuntu 12.10 - Ubuntu 12.04 LTS Summary: usb-creator could be tricked into bypassing polkit authorizations. Software Description: - usb-creator: create a startup disk using a CD or disc image Details: It was discovered that usb-creator was using polkit in an unsafe manner. A local attacker could possibly use this issue to bypass intended polkit authorizations. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 13.04: usb-creator-common 0.2.47.1 Ubuntu 12.10: usb-creator-common 0.2.40ubuntu2 Ubuntu 12.04 LTS: usb-creator-common 0.2.38.2 After a standard system update you need to reboot your computer to make all the necessary changes. References: http://www.ubuntu.com/usn/usn-1963-1 CVE-2013-1063 Package Information: https://launchpad.net/ubuntu/+source/usb-creator/0.2.47.1 https://launchpad.net/ubuntu/+source/usb-creator/0.2.40ub... https://launchpad.net/ubuntu/+source/usb-creator/0.2.38.2 -- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security... (Log in to post comments)
|
|||||||||||||||||||