Ubuntu 5327-1: rsh vulnerability | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Contribute
==========================================================================
Ubuntu Security Notice USN-5327-1
March 15, 2022

netkit-rsh vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 18.04 LTS

Summary:

rsh would allow unintended modification of target directory permissions.

Software Description:
- netkit-rsh: client programs for remote shell connections

Details:

Hiroyuki Yamamori discovered that rsh incorrectly handled certain
filenames. If a user or automated system were tricked into connecting to a
malicious rsh server, a remote attacker could possibly use this issue to
modify directory permissions.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
rsh-client 0.17-17ubuntu0.1
rsh-server 0.17-17ubuntu0.1

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-5327-1
CVE-2019-7282

Package Information:
https://launchpad.net/ubuntu/+source/netkit-rsh/0.17-17ubuntu0.1

Ubuntu 5327-1: rsh vulnerability

March 15, 2022
rsh would allow unintended modification of target directory permissions.

Summary

A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS Summary: rsh would allow unintended modification of target directory permissions. Software Description: - netkit-rsh: client programs for remote shell connections Details: Hiroyuki Yamamori discovered that rsh incorrectly handled certain filenames. If a user or automated system were tricked into connecting to a malicious rsh server, a remote attacker could possibly use this issue to modify directory permissions.

Update Instructions

The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: rsh-client 0.17-17ubuntu0.1 rsh-server 0.17-17ubuntu0.1 In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-5327-1

CVE-2019-7282

Severity
Ubuntu Security Notice USN-5327-1

Package Information

https://launchpad.net/ubuntu/+source/netkit-rsh/0.17-17ubuntu0.1

Related News

IceFire Ransomware Portends a Broader Shift From Windows to Linux

IceFire Ransomware Now Encrypts Both Linux and Windows Systems

Linux Support Expands Cyber Spy Group's Arsenal

Proposed Linux Patch Would Allow Disabling CPU Security Mitigations At Build-Time

News

Advisories

HOWTOs

Features

Verifying Linux Server Security: What Every Admin Needs to Know
What Linux, Windows & Mac OS Users Need to Know About VPNs
Complete Guide to Vulnerability Basics
How To Get Live Updates on Critical Linux Security Advisories
Best Linux Backup Solutions to Prevent Data Loss in A Ransomware Attack

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy