GNOME Keyring could be made to expose sensitive information.
Software Description:
- gnome-keyring: GNOME keyring services
Details:
It was discovered that GNOME Keyring incorrectly cleared out credentials
supplied to the PAM module. A local attacker could possibly use this issue
to discover login credentials.
The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 LTS: gnome-keyring 3.18.3-0ubuntu2.1 libpam-gnome-keyring 3.18.3-0ubuntu2.1 Ubuntu 14.04 LTS: gnome-keyring 3.10.1-1ubuntu4.4 libpam-gnome-keyring 3.10.1-1ubuntu4.4 After a standard system update you need to restart your session to make all the necessary changes.
https://ubuntu.com/security/notices/USN-3894-1
CVE-2018-20781
Get the latest Linux and open source security news straight to your inbox.