Release date: Updated: 2012-12-14 affected systems: ubuntulinux12.x?tulinux11. x Description: ?bugtraqid: 10917cve (CAN) ID: CVE-2012
Release date:
Updated on:
Affected Systems:
Ubuntu Linux 12.x
Ubuntu Linux 11.x
Description:
--------------------------------------------------------------------------------
Bugtraq id: 56917
CVE (CAN) ID: CVE-2012-0961
Ubuntu is a Linux operating system based on desktop applications. APT is the advanced frontend of dpkg.
The term. log of Ubuntu APT has the global readable permission and incorrect permission settings. Local attackers can exploit this vulnerability to obtain sensitive information.
<* Source: Ubuntu
Link: http://people.canonical.com /~ Ubuntu-security/cve/2012/CVE-2012-0961.html
Http://www.ubuntu.com/usn/usn-1662-1/
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Ubuntu
------
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Ubuntu 12.10:
Apt 0.9.7.5ubuntu5.2 https://launchpad.net/ubuntu/+source/apt/0.9.7.5ubuntu5.2
Ubuntu 12.04 LTS:
Apt 0.8.16 ~ Exp12ubuntu10.7 https://launchpad.net/ubuntu/+source/apt/0.8.16 ~ Exp12ubuntu10.7
Ubuntu 11.10:
Apt 0.8.16 ~ Exp5ubuntu13.6 https://launchpad.net/ubuntu/+source/apt/0.8.16 ~ Exp5ubuntu13.6