Ubuntu Security Update USN-8496-2: cifs-utils regression

LinuxBot

Member
Joined
Apr 25, 2017
Messages
6,707
Reaction score
94
Credits
-1,257
USN-8496-1 fixed a vulnerability in cifs-utils. Unfortunately, the fix introduced a regression with Kerberos mounts. This update reverts the security update until a complete fix is available. We apologize for the inconvenience. Original advisory details: It was discovered that cifs-utils incorrectly dropped root privileges before looking up user information. A local attacker could possibly use this issue to execute arbitrary code as the root user.

Continue reading...
 


Follow Linux.org

Members online


Latest posts

Top