Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Ubuntu 12.04 LTS USN-1957-1 Moderate: Jockey Polkit Bypass

Calendar Sep 18, 2013 User Avatar LinuxSecurity Advisories
1 min read
Ubuntu Large Esm H500
Topics%20covered

Topics Covered

security advisory moderate local attack ubuntu bypass polkit jockey
Jockey could be tricked into bypassing polkit authorizations. 
=========================================================================Ubuntu Security Notice USN-1957-1
September 18, 2013

jockey vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 12.04 LTS

Summary:

Jockey could be tricked into bypassing polkit authorizations.

Software Description:
- jockey: user interface and desktop integration for driver management

Details:

It was discovered that Jockey was using polkit in an unsafe manner. A local
attacker could possibly use this issue to bypass intended polkit
authorizations.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 12.04 LTS:
  jockey-common                   0.9.7-0ubuntu7.11

After a standard system update you need to reboot your computer to make
all the necessary changes.

References:
  
  CVE-2013-1065

Package Information:
  https://launchpad.net/ubuntu/+source/jockey/0.9.7-0ubuntu7.11

Ubuntu 12.04 LTS USN-1957-1 Moderate: Jockey Polkit Bypass

ubuntu
Calendar Grey September 18, 2013
Dist Ubuntu Esm H88
Uncover the Jockey exploit in Ubuntu that facilitates the circumvention of polkit permissions, alongside the specifics of the recent patch.
Jockey could be tricked into bypassing polkit authorizations.

Summary

Topics%20covered

Topics Covered

security advisory moderate local attack ubuntu bypass polkit jockey

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: jockey-common 0.9.7-0ubuntu7.11 After a standard system update you need to reboot your computer to make all the necessary changes.

References

CVE-2013-1065

September 18, 2013

Topics%20covered

Topics Covered

security advisory moderate local attack ubuntu bypass polkit jockey

Package Information

https://launchpad.net/ubuntu/+source/jockey/0.9.7-0ubuntu7.11

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here