What Are You Looking For?

Sign Up
=========================================================================Ubuntu Security Notice USN-4552-1
September 28, 2020

pam-python vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS

Summary:

Pam-python could be made to crash or run programs as an administrator
if certain environment variables are set.

Software Description:
- pam-python: Enables PAM modules to be written in Python

Details:

Malte Kraus discovered that Pam-python mishandled certain environment variables.
A local attacker could potentially use this vulnerability to execute programs
as root.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
  libpam-python                   1.0.6-1.1+deb10u1build0.18.04.1

In general, a standard system update will make all the necessary changes.

References:
  https://usn.ubuntu.com/4552-1
  CVE-2019-16729

Package Information:
  https://launchpad.net/ubuntu/+source/pam-python/1.0.6-1.1+deb10u1build0.18.04.1

-- 
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

Ubuntu 4552-1: Pam-python vulnerability

September 28, 2020
Pam-python could be made to crash or run programs as an administrator if certain environment variables are set.

Summary

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: libpam-python 1.0.6-1.1+deb10u1build0.18.04.1 In general, a standard system update will make all the necessary changes.

References

https://usn.ubuntu.com/4552-1

CVE-2019-16729

Severity
September 28, 2020

Package Information

https://launchpad.net/ubuntu/+source/pam-python/1.0.6-1.1+deb10u1build0.18.04.1 -- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

Related News

Linux Mint 21.2 “EDGE” ISO Released with Linux Kernel 6.2, Secure Boot Support

Oct 3, 2023

Beyond the Buffer: Understanding the New Curl Bug and Steps to Secure Your System

Nov 2, 2023

Linux Creator Expresses “Frustration” Towards AMD’s fTPM Bugs, Calls To Disable Feature

Aug 1, 2023

Remotely Exploitable Poppler DoS Bugs Fixed - Update Now!

Sep 22, 2023

News

Advisories

HOWTOs

Features

Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses

About Us

Powered By

Footer Logo