ubuntu-core-launcher (1.0.28) yakkety; urgency=medium
* SECURITY UPDATE: delayed attack snap data theft and privilege escalation
when using Snappy on traditional Ubuntu (classic) systems (LP: #1576699)
- src/main.c: remove glob code and hardcode /snap/ubuntu-core/current
instead. The glob code both used an improper glob and performed an
incorrect check due to a typo which allowed a snap named ubuntu-core-...
to be bind mounted into application runtimes instead of the ubuntu-core
OS snap. Ubuntu Core removed .<origin> and .sideload from the SNAP path
so the glob can simply be dropped.
- CVE-2016-1580
* debian/usr.bin.ubuntu-core-launcher:
- only allow mounting /snap/ubuntu-core/*/... to safeguard against this in
the future
- add lib32 and libx32 to match setup_snappy_os_mounts()
Date: Fri, 29 Apr 2016 11:17:42 -0500
Changed-By: Jamie Strandboge <ja...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/ubuntu-core-launcher/1.0.28
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 29 Apr 2016 11:17:42 -0500
Source: ubuntu-core-launcher
Binary: ubuntu-core-launcher
Architecture: source
Version: 1.0.28
Distribution: yakkety
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
Changed-By: Jamie Strandboge <ja...@ubuntu.com>
Description:
ubuntu-core-launcher - Launcher for ubuntu-core (snappy) apps
Launchpad-Bugs-Fixed: 1576699
Changes:
ubuntu-core-launcher (1.0.28) yakkety; urgency=medium
.
* SECURITY UPDATE: delayed attack snap data theft and privilege escalation
when using Snappy on traditional Ubuntu (classic) systems (LP: #1576699)
- src/main.c: remove glob code and hardcode /snap/ubuntu-core/current
instead. The glob code both used an improper glob and performed an
incorrect check due to a typo which allowed a snap named ubuntu-core-...
to be bind mounted into application runtimes instead of the ubuntu-core
OS snap. Ubuntu Core removed .<origin> and .sideload from the SNAP path
so the glob can simply be dropped.
- CVE-2016-1580
* debian/usr.bin.ubuntu-core-launcher:
- only allow mounting /snap/ubuntu-core/*/... to safeguard against this in
the future
- add lib32 and libx32 to match setup_snappy_os_mounts()
Checksums-Sha1:
deefcbb946d42f3d3ac43e0aa4faacde705c0793 1597 ubuntu-core-launcher_1.0.28.dsc
24d93ae16f6b859f62ffc71c5f949f3ce0f5b56f 29860
ubuntu-core-launcher_1.0.28.tar.xz
Checksums-Sha256:
98ed5c39c9121b6410a02c5be7121759f6124ea8ebea3c7c04c6c7e7796b3026 1597
ubuntu-core-launcher_1.0.28.dsc
a68b64f42f13c2ea2c8bad35bff570d7ecdf31c61558c45ab8b42ca1687c3715 29860
ubuntu-core-launcher_1.0.28.tar.xz
Files:
ce32b0c6c2129eba2558942d228e599a 1597 utils optional
ubuntu-core-launcher_1.0.28.dsc
90d4df30507eb9f94ff129e3cb22ed9d 29860 utils optional
ubuntu-core-launcher_1.0.28.tar.xz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=3U34
-----END PGP SIGNATURE-----
--
Yakkety-changes mailing list
Yakkety-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/yakkety-changes
