Ubuntu Update For Dbus USN-1576-2 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1576-2

Solution

Please Install the Updated Packages.

Insight

USN-1576-1 fixed vulnerabilities in DBus. The update caused a regression for certain services launched from the activation helper, and caused an unclean shutdown on upgrade. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Sebastian Krahmer discovered that DBus incorrectly handled environment variables when running with elevated privileges. A local attacker could possibly exploit this flaw with a setuid binary and gain root privileges.

Affected

dbus on Ubuntu 12.04 LTS , Ubuntu 11.10 , Ubuntu 11.04 , Ubuntu 10.04 LTS , Ubuntu 8.04 LTS

Severity

Classification

CVE CVE-2012-3524

CVSS	Base Score: 6.9 AV:L/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for cupsys vulnerability USN-606-1
Ubuntu Update for cinder USN-1731-1
Ubuntu Update for apr USN-1134-1
Ubuntu Update for curl USN-2048-2
Ubuntu Update for apache2 vulnerability USN-990-2

Ubuntu Update for dbus USN-1576-2

Take action and discover your vulnerabilities