You are here
Home > Preporuke > Sigurnosni propusti programskog paketa unity

Sigurnosni propusti programskog paketa unity

==========================================================================
Ubuntu Security Notice USN-2184-1
April 29, 2014

unity vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 14.04 LTS

Summary:

The Unity lock screen could be bypassed.

Software Description:
– unity: Interface designed for efficiency of space and interaction.

Details:

Frédéric Bardy discovered that Unity incorrectly filtered keyboard
shortcuts when the screen was locked. A local attacker could possibly use
this issue to run commands, and unlock the current session.

Giovanni Mellini discovered that Unity could display the Dash in certain
conditions when the screen was locked. A local attacker could possibly use
this issue to run commands, and unlock the current session.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 14.04 LTS:
unity 7.2.0+14.04.20140423-0ubuntu1.1

After a standard system update you need to restart your session to make all
the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2184-1
https://launchpad.net/bugs/1308850, https://launchpad.net/bugs/1313885

Package Information:
https://launchpad.net/ubuntu/+source/unity/7.2.0+14.04.20140423-0ubuntu1.1

—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1
Comment: Using GnuPG with Thunderbird – http://www.enigmail.net/

iQIcBAEBCgAGBQJTX5ekAAoJEGVp2FWnRL6TtCIP/Rl6GsKDhZQccL8TnJ/4lRpN
A1Wrjgfon5qGxBz97b23AwUx5UlLMj0vpiSfJC0Nxd4z2jEJob+aE+gbfrAJdjHA
BF+/TQpjRRNCgI7/CcfilpRrVs5oI+O8TdATgXBQAP30O5zIg7nL/4KVFnWs3oBf
q/bEGCTKXwvLAVzvvTXgfudA7YAU6HYOY6otQlTIC1OHfLPPJKZPQGkC+aqy4RVH
WrYOA5YD/np/zeQnHC/IvIxFQqg+YUoL47XfjqcgbDwZlF4Pj2emRUKOD4ZFWonU
86MXZ7cjG1ezyyVhFLDchL83m3y3EBqErVEOag3snHCqxXpuWr5ffkV8jsOU0ztH
YIpGj3WBjqtZwrKZVhA5iSt+NRMK67OCegHqZdgMe2FfS8ogyiW1RDr7UgykRfv1
PZmaZ3WaWIlEXjd48Hvt9+A0O5W/hY1VFAHjn3hV2IU9F+eBQuSfpf8rjuuxqPfk
NCtAw4zngO0rhiNomOIQHSPTvZa6uIWcWL2UVaeYtzCtOMIj8F/Me4ooMr7pXNQb
WHFTC0CrwKFU9VIuKXStAy8AuN38/4ieXyYiOqX68UsrbNvfj7Vo+5ERi4GxvBL0
NF7OSscdpbyNz13O/kypYNAAhf66iBgYC/WnCQW7kQ4sr3qAgSTyrn5Huor+5IKI
OjGLB3Wlt/v0cPGoShAh
=D1WU
—–END PGP SIGNATURE—–

Top
More in Preporuke
Sigurnosni nedostaci u jezgri operacijskog sustava

Otkriveni su sigurnosni nedostaci u jezgri operacijskog sustava RHEL. Otkriveni nedostaci potencijalnim napadačima omogućuju izvođenje napada uskraćivanja usluge, stjecanje povećanih...

Close