Ubuntu Security Notice USN-6912-1

Ubuntu Security Notice USN-6912-1
2024-7-24 21:40:25 Author: packetstormsecurity.com(查看原文) 阅读量:8 收藏

==========================================================================
Ubuntu Security Notice USN-6912-1
July 24, 2024provd vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 24.04 LTS
Summary:
provd could be made to run programs as an administrator.
Software Description:
- provd: Ubuntu Desktop Provision init backend
Details:
James Henstridge discovered that provd incorrectly handled environment
variables. A local attacker could possibly use this issue to run arbitrary
programs and escalate privileges.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 24.04 LTS
   provd                           0.1.2+24.04
In general, a standard system update will make all the necessary changes.
References:
   https://ubuntu.com/security/notices/USN-6912-1
   CVE-2024-6714,https://bugs.launchpad.net/ubuntu/+source/provd/+bug/2071574
Package Information:
   https://launchpad.net/ubuntu/+source/provd/0.1.2+24.04

文章来源: https://packetstormsecurity.com/files/179710/USN-6912-1.txt
如有侵权请联系:admin#unsafe.sh