Lucene search
UbuntuUSN-572-1HistoryJan 18, 2008 - 12:00 a.m.
apt-listchanges vulnerability
2008-01-1800:00:00
ubuntu.com
25
Releases
- Ubuntu 7.10
- Ubuntu 7.04
Packages
- apt-listchanges -
Details
Felipe Sateler discovered that apt-listchanges did not use safe paths when
importing additional Python libraries. A local attacker could exploit
this and execute arbitrary commands as the user running apt-listchanges.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 7.10 | noarch | apt-listchanges | < 2.74ubuntu3.1 | UNKNOWN |
| Ubuntu | 7.04 | noarch | apt-listchanges | < 2.72ubuntu6.1 | UNKNOWN |
References
Related
openvas
openvas
Debian Security Advisory DSA 1465-1 (apt-listchanges)
2008-01-31 00:00:00
Debian Security Advisory DSA 1465-1 (apt-listchanges)
2008-01-31 00:00:00
Debian Security Advisory DSA 1465-2 (apt-listchanges)
2008-01-31 00:00:00
debiancve
debiancve
CVE-2008-0302
2008-01-17 02:00:00
ubuntucve
ubuntucve
CVE-2008-0302
2008-01-17 00:00:00
cvelist
cvelist
CVE-2008-0302
2008-01-17 01:00:00
nessus
nessus
Ubuntu 7.04 / 7.10 : apt-listchanges vulnerability (USN-572-1)
2008-01-21 00:00:00
Debian DSA-1465-2 : apt-listchanges - programming error
2008-01-18 00:00:00
osv
osv
apt-listchanges - arbitrary code execution
2008-01-17 00:00:00
debian
debian
prion
prion
Design/Logic Flaw
2008-01-17 02:00:00
securityvulns
securityvulns
apt-listchanges privilege escalation
2008-01-17 00:00:00
cve
cve
CVE-2008-0302
2008-01-17 02:00:00