[ubuntu/bionic-updates] fscrypt 0.2.2-0ubuntu2.1 (Accepted)

Ubuntu Archive Robot cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Fri Aug 24 03:58:09 UTC 2018


fscrypt (0.2.2-0ubuntu2.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Privilege escalation via improperly restored
    supplementary groups in libpam-fscrypt (LP: #1787548)
    - CVE-2018-6558.patch: Save the euid, egid, and supplementary groups when
      entering the PAM module, drop privileges to perform actions on behalf of
      the user, and then properly restore the saved values before exiting the
      PAM module. Based on patch from upstream.
    - CVE-2018-6558
  * 0001-security-drop-and-regain-privileges-in-all-threads.patch: Drop and
    regain privileges in all threads of the current process
  * 0001-Ensure-keyring-privilege-changes-are-reversible.patch: Ensure keyring
    privilege changes are reversible to prevent failures when, for example,
    "su <user>" is executed as an unprivileged user

Date: 2018-08-22 19:17:12.819779+00:00
Changed-By: Tyler Hicks <tyhicks at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/fscrypt/0.2.2-0ubuntu2.1
-------------- next part --------------
Sorry, changesfile not available.


More information about the Bionic-changes mailing list