ubuntu-advantage-desktop-daemon (1.10.ubuntu0.16.04.1~esm1) xenial-security;
urgency=medium
* SECURITY UPDATE: Pro client is called with attach parameter in plain text,
allowing for potentially leak of private information. (LP: #2068944)
- debian/patches/CVE-2024-6388.patch: Use a temporary file with 400
permissions instead.
https://github.com/canonical/ubuntu-advantage-desktop-daemon/pull/24/
- CVE-2024-6388
Date: 2024-10-09 00:28:10.963790+00:00
Changed-By: Chris Kim <[email protected]>
Signed-By: Ubuntu Archive Robot <[email protected]>
https://launchpad.net/ubuntu/+source/ubuntu-advantage-desktop-daemon/1.10.ubuntu0.16.04.1~esm1
Sorry, changesfile not available.
--
Xenial-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/xenial-changes
