[ubuntu/trusty-updates] amanda 1:3.3.3-2ubuntu1.1 (Accepted)

Ubuntu Archive Robot Tue, 21 Mar 2023 02:58:41 -0700

amanda (1:3.3.3-2ubuntu1.1) trusty-security; urgency=medium

  * SECURITY UPDATE: information leak calcsize SUID binary
    - d/p/56-fix-CVE-2022-37703: remove perror call disclosing potentially
      privileged information
    - CVE-2022-37703
  * SECURITY UPDATE: privilege escalation via rundump SUID binary
    - d/p/50-fix-CVE-2022-37704: add option validation
    - d/p/52-fix-CVE-2022-37704_part_2-backport: filter RSH env variable
    - CVE-2022-37704
  * SECURITY UPDATE: privilege escalation via runtar SUID binary
    - d/p/48-fix-CVE-2022-37705-backport: fix option parsing
    - CVE-2022-37705


Date: 2023-03-19 23:23:09.134246+00:00
Changed-By: David Lane <david.l...@canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-ro...@lists.canonical.com>
https://launchpad.net/ubuntu/+source/amanda/1:3.3.3-2ubuntu1.1

Sorry, changesfile not available.

-- 
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/trusty-changes

[ubuntu/trusty-updates] amanda 1:3.3.3-2ubuntu1.1 (Accepted)

Reply via email to