Ubuntu Update For Pam-xdg-support USN-1766-1 Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

Zbigniew Tenerowicz and Sebastian Krzyszkowiak discovered that pam-xdg-support incorrectly handled the PATH environment variable. A local attacker could use this issue in combination with sudo to possibly escalate privileges.

Affected

pam-xdg-support on Ubuntu 12.10

References

https://lists.ubuntu.com/archives/ubuntu-security-announce/2013-March/002043.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-1052

CVSS	Base Score: 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for bind9 USN-1566-1
Ubuntu Update for eglibc, glibc vulnerability USN-1009-2
Ubuntu Update for curl vulnerability USN-484-1
Ubuntu Update for Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities USN-896-1
Ubuntu Update for clamav USN-1773-1

Ubuntu Update for pam-xdg-support USN-1766-1

Take action and discover your vulnerabilities