[ubuntu/raring-proposed] pam-xdg-support 0.2-0ubuntu2 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Mon Mar 18 17:00:18 UTC 2013
pam-xdg-support (0.2-0ubuntu2) raring; urgency=low
* SECURITY UPDATE: code execution via unsafe PATH (LP: #1155337)
- debian/patches/CVE-2013-1052.patch: use absolute path when calling rm
to prevent unsafe PATH when using with sudo.
- CVE-2013-1052
Date: Fri, 15 Mar 2013 09:32:32 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Steve Langasek <steve.langasek at ubuntu.com>
https://launchpad.net/ubuntu/raring/+source/pam-xdg-support/0.2-0ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 15 Mar 2013 09:32:32 -0400
Source: pam-xdg-support
Binary: libpam-xdg-support
Architecture: source
Version: 0.2-0ubuntu2
Distribution: raring
Urgency: low
Maintainer: Steve Langasek <steve.langasek at ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
libpam-xdg-support - PAM module for XDG_RUNTIME_DIR support
Launchpad-Bugs-Fixed: 1155337
Changes:
pam-xdg-support (0.2-0ubuntu2) raring; urgency=low
.
* SECURITY UPDATE: code execution via unsafe PATH (LP: #1155337)
- debian/patches/CVE-2013-1052.patch: use absolute path when calling rm
to prevent unsafe PATH when using with sudo.
- CVE-2013-1052
Checksums-Sha1:
82a5bf8c16472688a05f552dae749be4aeafff00 1867 pam-xdg-support_0.2-0ubuntu2.dsc
b599a6170308832d6e286a946e9a8a00719d175a 2611 pam-xdg-support_0.2-0ubuntu2.debian.tar.gz
Checksums-Sha256:
64c3461176ae2fa9e076f8004b2e43badee6e2dd9e97e745a39f0ed1b1a85a30 1867 pam-xdg-support_0.2-0ubuntu2.dsc
d00f83189c85e05e1d283dbc8157050bf8e3ab5fe73e01d187af8a40d6a56537 2611 pam-xdg-support_0.2-0ubuntu2.debian.tar.gz
Files:
4d4d6d7d3a1ef78942b5af7bce88520f 1867 admin optional pam-xdg-support_0.2-0ubuntu2.dsc
2c15086ba06e39b8c9965988b47253fa 2611 admin optional pam-xdg-support_0.2-0ubuntu2.debian.tar.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)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=vAo4
-----END PGP SIGNATURE-----
More information about the Raring-changes
mailing list