Debian Goodies could be made to crash or run programs as your login if it
opened a specially crafted file.
Software Description:
- debian-goodies: Small toolbox-style utilities for Debian systems
Details:
Jakub Wilk discovered that debmany in Debian Goodies incorrectly handled
certain deb files. An attacker could possibly use this issue to execute
arbitrary shell commands.
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 24.04 LTS
debian-goodies 0.88.1ubuntu1.3
Ubuntu 18.04 LTS
debian-goodies 0.79ubuntu0.1~esm1
Available with Ubuntu Pro
Ubuntu 16.04 LTS
debian-goodies 0.64ubuntu0.1~esm1
Available with Ubuntu Pro
Ubuntu 14.04 LTS
debian-goodies 0.63ubuntu1+esm1
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.https://ubuntu.com/security/notices/USN-8109-1
CVE-2023-27635
Get the latest Linux and open source security news straight to your inbox.