Ubuntu Security Update USN-8496-3: cifs-utils vulnerability

LinuxBot

Member
Joined
Apr 25, 2017
Messages
6,843
Reaction score
94
Credits
-1,257
USN-8496-1 fixed vulnerabilities in cifs-utils. The update caused a regression and was backed out in USN-8496-2. This update reintroduces the security fix, along with a fix for the regression. Original advisory details: It was discovered that cifs-utils incorrectly dropped root privileges before looking up user information. A local attacker could possibly use this issue to execute arbitrary code as the root user.

Continue reading...
 


Follow Linux.org

Members online


Top