Ubuntu Update For Dbus USN-1576-2 Network Vulnerability

Summary

Ubuntu Update for Linux kernel vulnerabilities USN-1576-2

Solution

Please Install the Updated Packages.

Insight

USN-1576-1 fixed vulnerabilities in DBus. The update caused a regression for certain services launched from the activation helper, and caused an unclean shutdown on upgrade. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Sebastian Krahmer discovered that DBus incorrectly handled environment variables when running with elevated privileges. A local attacker could possibly exploit this flaw with a setuid binary and gain root privileges.

Affected

dbus on Ubuntu 12.04 LTS , Ubuntu 11.10 , Ubuntu 11.04 , Ubuntu 10.04 LTS , Ubuntu 8.04 LTS

Severity

Classification

CVE CVE-2012-3524
CVSS Base Score: 6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for curl USN-2058-1
Ubuntu Update for apt USN-1169-1
Ubuntu Update for apparmor USN-1430-4
Ubuntu Update for aptdaemon USN-1666-1
Ubuntu Update for cpio USN-2456-1

Ubuntu Update for dbus USN-1576-2

Take action and discover your vulnerabilities