CVE-2018-14036

Related Files

Ubuntu Security Notice USN-4616-2

Posted Nov 4, 2020

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4616-2 - USN-4616-1 fixed several vulnerabilities in AccountsService. This update provides the corresponding update for Ubuntu 14.04 ESM. Kevin Backhouse discovered that AccountsService incorrectly dropped privileges. A local user could possibly use this issue to cause AccountsService to crash or hang, resulting in a denial of service. Various other issues were also addressed.

tags | advisory, denial of service, local, vulnerability

systems | linux, ubuntu

advisories | CVE-2018-14036, CVE-2020-16126

SHA-256 | c9216581f5de523b400633aa67702df5e25d8a27bc72211d40ce7e59b2eca0a1

Download | Favorite | View

Ubuntu Security Notice USN-4616-1

Posted Nov 3, 2020

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 4616-1 - Kevin Backhouse discovered that AccountsService incorrectly dropped privileges. A local user could possibly use this issue to cause AccountsService to crash or hang, resulting in a denial of service. Kevin Backhouse discovered that AccountsService incorrectly handled reading .pam_environment files. A local user could possibly use this issue to cause AccountsService to crash or hang, resulting in a denial of service. This issue only affected Ubuntu 20.04 LTS and Ubuntu 20.10. Various other issues were also addressed.

tags | advisory, denial of service, local

systems | linux, ubuntu

advisories | CVE-2018-14036, CVE-2020-16126, CVE-2020-16127

SHA-256 | 431f97790170c34bab7a8a14f759ad89ab8506bb8c733802cd4591abd348a6a1

Download | Favorite | View