subject:"\[Touch\-packages\] \[Bug 1787548\] Re\: PAM fscrypt adds root\(0\) group to all users called by su"

[Touch-packages] [Bug 1787548] Re: PAM fscrypt adds root(0) group to all users called by su

2018-08-23 Thread Launchpad Bug Tracker

This bug was fixed in the package fscrypt - 0.2.2-0ubuntu2.1 --- fscrypt (0.2.2-0ubuntu2.1) bionic-security; urgency=medium * SECURITY UPDATE: Privilege escalation via improperly restored supplementary groups in libpam-fscrypt (LP: #1787548) - CVE-2018-6558.patch: Save the

[Touch-packages] [Bug 1787548] Re: PAM fscrypt adds root(0) group to all users called by su

2018-08-23 Thread Tyler Hicks

I've uploaded an fscrypt security update to the Ubuntu Security PPA. Ubuntu Security will release it once they've reviewed and approved the changes. ** Information type changed from Private Security to Public Security ** Changed in: shadow (Ubuntu) Status: New => Invalid ** Changed in: