drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Mangelnde Rechteprüfung in Jockey
Name: |
Mangelnde Rechteprüfung in Jockey |
|
ID: |
USN-1957-1 |
|
Distribution: |
Ubuntu |
|
Plattformen: |
Ubuntu 12.04 LTS |
|
Datum: |
Mi, 18. September 2013, 18:46 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1065 |
|
Applikationen: |
Jockey |
|
Originalnachricht |
This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --===============1205423682263564954== Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="------------enig89145CB18E40C065C907B911"
This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig89145CB18E40C065C907B911 Content-Type: text/plain; charset=UTF- Content-Transfer-Encoding: quoted-printable
========================================================================== Ubuntu Security Notice USN-1957-1 September 18, 2013
jockey vulnerability ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 12.04 LTS
Summary:
Jockey could be tricked into bypassing polkit authorizations.
Software Description: - jockey: user interface and desktop integration for driver management
Details:
It was discovered that Jockey was using polkit in an unsafe manner. A local attacker could possibly use this issue to bypass intended polkit authorizations.
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 12.04 LTS: jockey-common 0.9.7-0ubuntu7.11
After a standard system update you need to reboot your computer to make all the necessary changes.
References: http://www.ubuntu.com/usn/usn-1957-1 CVE-2013-1065
Package Information: https://launchpad.net/ubuntu/+source/jockey/0.9.7-0ubuntu7.11
--------------enig89145CB18E40C065C907B911 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.14 (GNU/Linux) Comment: Using GnuPG with undefined - http://www.enigmail.net/
iQIcBAEBCgAGBQJSOcGaAAoJEGVp2FWnRL6T6XgQAJ0tKKelPZrcK3RGlPceHN8B s9UtHEqvvOuhPjes66o/VsGPAWY/AHk5EAtiOS52l+TsEib+GZAFwZ6OSpD7BoM3 ObhwK51AVgZCA/nXCMzRldf5zKocQDFwLt4qvwDoBbFTPK9MbnYtkBQYHhwBvEPt 0t5Y81OMwMhg8jtsCsKEFYWscX/vJOmXZeVAz5Xl4egHKpWCJwqiXkd0TQwFrBd7 v8LKHfLMZT/jcblLdakSF3FdrCCUusQ7n7SmmtEoXkcwYwo81CbBbPUK3aEJZeoD pEEiqHWiz85PEkyeCwBI4k5ro2qJiN1pj1mNDEd3wwZQ7oQPJHlmHUaJHWoB3Lc4 4tMHWH3OK6dTVJsyRuDAcp5U2nPYlmc0nvcYoF71ECMDoN6UIb7QiN8JTGc4vRBT eFdGbhcAn9eJ/mpxL5BacUG4/dfZXvPsvD2P0Im+Tb9mKfPhEx+FKvATCVArVcNp GFQTRtsmu1W91gilHMr+tNqlFOcrAPpKW70sV1MFTQgrW3gz0xcOLZoFIG9o0S6o eF+MBQpSd70tveJUVjqiFTRVf/38u9h/VC7W6wDrDXV+Se1B9DlYK0jeoepO7lpX 4m7PPs8CzZDLrM/y7VdEXhUrVMYb12+JovlS1uoXZhkgXJlpOTMykzk0Wa/c5mPh U1clUSXY76UhkHLVMIvh =IDNv -----END PGP SIGNATURE-----
--------------enig89145CB18E40C065C907B911--
--===============1205423682263564954== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline
-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce
--===============1205423682263564954==--
|
|
|
|