3 matches found
CVE-2012-0948
CVE-2012-0948 affects Ubuntu’s Update Manager (DistUpgrade/DistUpgradeMain.py) used in Ubuntu 12.04 LTS, 11.10, and 11.04. The vulnerability arises from weak permissions on two archive files (apt-clone_system_state.tar.gz and system_state.tar.gz), allowing local users to read repository credentia...
Ubuntu 11.04 / 11.10 / 12.04 LTS : update-manager vulnerabilities (USN-1443-1)
It was discovered that Update Manager created system state archive files with incorrect permissions when upgrading releases. A local user could possibly use this to read repository credentials. CVE-2012-0948 Felix Geyer discovered that the Update Manager Apport hook incorrectly uploaded certain...
USN-1443-1: Update Manager vulnerabilities
It was discovered that Update Manager created system state archive files with incorrect permissions when upgrading releases. A local user could possibly use this to read repository credentials. CVE-2012-0948 Felix Geyer discovered that the Update Manager Apport hook incorrectly uploaded certain...