drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in usb-creator (Aktualisierung)
Name: |
Ausführen beliebiger Kommandos in usb-creator (Aktualisierung) |
|
ID: |
USN-2576-2 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu fail |
|
Datum: |
Do, 23. April 2015, 16:35 |
|
Referenzen: |
Keine Angabe |
|
Applikationen: |
usb-creator |
|
Update von: |
Ausführen beliebiger Kommandos in usb-creator |
|
Originalnachricht |
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --===============5606239480750941233== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="fd3xb21ubp3pvdwN3Qsfw1tDH1RS6NwX5"
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --fd3xb21ubp3pvdwN3Qsfw1tDH1RS6NwX5 Content-Type: text/plain; charset=utf- Content-Transfer-Encoding: quoted-printable
========================================================================== Ubuntu Security Notice USN-2576-2 April 23, 2015
usb-creator vulnerability ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
Summary:
usb-creator could be tricked into running programs as an administrator.
Software Description:
Details:
USN-2576-1 fixed a vulnerability in usb-creator. This update provides the corresponding fix for Ubuntu 15.04.
Original advisory details:
Tavis Ormandy discovered that usb-creator was missing an authentication check. A local attacker could use this issue to gain elevated privileges.
Update instructions:
The problem can be corrected by updating your system to the following package versions:
After a standard system update you need to reboot your computer to make all the necessary changes.
References: http://www.ubuntu.com/usn/usn-2576-2 http://www.ubuntu.com/usn/usn-2576-1 https://launchpad.net/bugs/1447396
Package Information:
--fd3xb21ubp3pvdwN3Qsfw1tDH1RS6NwX5 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1
iQIcBAEBCgAGBQJVOP2jAAoJEGVp2FWnRL6TxQoP/A5kzZIZzbuqNeFglkl0X/a5 zuYr760G35E571A580SPTHU6fhIQqX9gAnPQfHKCwF0kWUujsf043SXMAbWC4IYc mAzNosHqMYunAX6p2iOuj/IUsNgWbYP8PmI8oXa3HcxyKU7ie/7WJcrqfu1Py52E 03C5hvV4wB+f7kdix8WtbHPPEfVfs8ohFGxSZnT40DrDTZkTjg/2iojivlqOoUTl QrLABOmvCEqDp8n34/FjaXIH+MRsGWUbA54h7ThJWgDotklxHxrdAcz4+uQFgCCD 3sSYh2JEFmPDxrtPekpk+JE+9JEsHxJxBjrlymUD3HOnFJB3Ahez6eFkq7EpSbae LES0PVHSQ3KMfY4hYuwYlQtruJAyVVc01ReCqWPJthc4Gl6vMRT+zajT6wtBJ5Pd WGx9ycogCuikBhuubF3f+2T/lZqxuUN/j6QqsRJ3Fj52Tp+VMxUD43ukzeQhSj3m Gq49sJzQEJVXutSvB4uucxLhD1YvArUwd+1fgnnDYj4voqbMU1k2Jq9z1mrY9i1L 2clK2mrO4zyGZg7z60VFTxxCbXIyyymrts0jnhm/JVSSAvXxoqXYkzXXolyMqDQo 4rpdjwbM0wOf4ujDVZiWgtONE81qvRvFHGteaNDQoiA+FUTrTGVDSlnnqbcB3APh NfA5ZaXXWLESiYBcaJGy =QxiF -----END PGP SIGNATURE-----
--fd3xb21ubp3pvdwN3Qsfw1tDH1RS6NwX5--
--===============5606239480750941233== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline
-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
--===============5606239480750941233==--
|
|
|
|