Ubuntu Security Notice USN-3255-1

Ubuntu Security Notice USN-3255-1: Posted Apr 5, 2017; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3255-1 - It was discovered that LightDM incorrectly handled home directory creation for guest users. A local attacker could use this issue to gain ownership of arbitrary directory paths and possibly gain administrative privileges.; tags | advisory, arbitrary, local; systems | linux, ubuntu; advisories | CVE-2017-7358; SHA-256 | e3c530aa3a6c8b4341919d114315f695cce907d048180f01f6fa591ffdad7621; Download | Favorite | View

Ubuntu Security Notice USN-3255-1


==========================================================================
Ubuntu Security Notice USN-3255-1
April 04, 2017

lightdm vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 16.10
- Ubuntu 16.04 LTS

Summary:

LightDM could be made to run programs as an administrator.

Software Description:
- lightdm: Display Manager

Details:

It was discovered that LightDM incorrectly handled home directory creation for
guest users. A local attacker could use this issue to gain ownership of
arbitrary directory paths and possibly gain administrative privileges.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.10:
  lightdm                         1.19.5-0ubuntu1.1

Ubuntu 16.04 LTS:
  lightdm                         1.18.3-0ubuntu1.1

In general, a standard system update will make all the necessary changes.

References:
  http://www.ubuntu.com/usn/usn-3255-1
  CVE-2017-7358

Package Information:
  https://launchpad.net/ubuntu/+source/lightdm/1.19.5-0ubuntu1.1
  https://launchpad.net/ubuntu/+source/lightdm/1.18.3-0ubuntu1.1


--8t9RHnE3ZwKMSgU+

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=IZ47
-----END PGP SIGNATURE-----

--8t9RHnE3ZwKMSgU+--

Top Authors In Last 30 Days

Red Hat 232 files
Ubuntu 59 files
Debian 27 files
Valentin Lobstein 11 files
LiquidWorm 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
Yevhenii Butenko 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,022)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,318)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,567)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,456)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

Ubuntu Security Notice USN-3255-1

Ubuntu Security Notice USN-3255-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Ubuntu Security Notice USN-3255-1

Share This

Ubuntu Security Notice USN-3255-1

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems