[ubuntu/bionic-security] amanda 1:3.5.1-1ubuntu0.1 (Accepted)
David Lane
david.lane at canonical.com
Tue Mar 21 07:19:14 UTC 2023
amanda (1:3.5.1-1ubuntu0.1) bionic-security; urgency=medium
* SECURITY UPDATE: information leak calcsize SUID binary
- d/p/56-fix-CVE-2022-37703: remove perror call disclosing potentially
privileged information
- CVE-2022-37703
* SECURITY UPDATE: privilege escalation via rundump SUID binary
- d/p/50-fix-CVE-2022-37704: add option validation
- d/p/52-fix-CVE-2022-37704_part_2: filter RSH environment variable
- CVE-2022-37704
* SECURITY UPDATE: privilege escalation via runtar SUID binary
- d/p/48-fix-CVE-2022-37705: fix option parsing
- CVE-2022-37705
Date: 2023-03-19 23:30:08.329397+00:00
Changed-By: David Lane <david.lane at canonical.com>
https://launchpad.net/ubuntu/+source/amanda/1:3.5.1-1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Bionic-changes
mailing list