Ubuntu Update For Rhythmbox USN-1503-1 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1503-1

Solution

Please Install the Updated Packages.

Insight

Hans Spaans discovered that the Context plugin in Rhythmbox created a temporary directory in an insecure manner. A local attacker could exploit this to execute arbitrary code as the user invoking the program. The Context plugin is disabled by default in Ubuntu.

Affected

rhythmbox on Ubuntu 12.04 LTS , Ubuntu 11.10

Severity

Classification

CVE CVE-2012-3355

CVSS	Base Score: 3.6 AV:L/AC:L/Au:N/C:N/I:P/A:P

Related Vulnerabilities

Ubuntu Update for dbus vulnerability USN-401-1
Ubuntu Update for libssh USN-2145-1
Ubuntu Update for nova USN-2407-1
Ubuntu Update for linux-ti-omap4 USN-1997-1
Ubuntu Update for linux-lts-backport-oneiric USN-1688-1

Ubuntu Update for rhythmbox USN-1503-1

Take action and discover your vulnerabilities