WHAT ARE YOU LOOKING FOR?

Ubuntu Security Notice USN-6042-1 ≈ Packet Storm

Alertes Affichages : 476
Ubuntu Security Notice USN-6042-1 ≈ Packet Storm

Home[1] Files[2] News[3] &[SERVICES_TAB] Contact[4] Add New[5]

Ubuntu Security Notice USN-6042-1[6]
Authored by Ubuntu[7] | Site security.ubuntu.com[8]

Ubuntu Security Notice 6042-1 - James Glovich discovered that sensitive data could be exposed in logs. An attacker could use this information to find hashed passwords and possibly escalate their privilege.

systems | linux[9], ubuntu[10]
advisories | CVE-2023-1786[11]
SHA-256 | 617d1ac1b19fae7f9e0c8079303d7e381d45f976c17e03a8bd1a7961741ef951
Download[12] | Favorite[13] | View[14]

Change Mirror[15] Download[16]

        ==========================================================================
Ubuntu Security Notice USN-6042-1
April 26, 2023
cloud-init vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 23.04
- Ubuntu 22.10
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 ESM
Summary:
cloud-init could write sensitive information to logs.
Software Description:
- cloud-init: initialization and customization tool for cloud instances
Details:
James Glovich discovered that sensitive data could be exposed in logs. An
attacker could use this information to find hashed passwords and possibly
escalate their privilege.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 23.04:
cloud-init                      23.1.2-0ubuntu0~23.04.1
Ubuntu 22.10:
cloud-init                      23.1.2-0ubuntu0~22.10.1
Ubuntu 22.04 LTS:
cloud-init                      23.1.2-0ubuntu0~22.04.1
Ubuntu 20.04 LTS:
cloud-init                      23.1.2-0ubuntu0~20.04.1
Ubuntu 18.04 LTS:
cloud-init                      23.1.2-0ubuntu0~18.04.1
Ubuntu 16.04 ESM:
cloud-init                      21.1-19-gbad84ad4-0ubuntu1~16.04.4
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-6042-1
CVE-2023-1786, https://bugs.launchpad.net/cloud-init/+bug/2013967
Package Information:
https://launchpad.net/ubuntu/+source/cloud-init/23.1.2-0ubuntu0~23.04.1
https://launchpad.net/ubuntu/+source/cloud-init/23.1.2-0ubuntu0~22.10.1
https://launchpad.net/ubuntu/+source/cloud-init/23.1.2-0ubuntu0~22.04.1
https://launchpad.net/ubuntu/+source/cloud-init/23.1.2-0ubuntu0~20.04.1
https://launchpad.net/ubuntu/+source/cloud-init/23.1.2-0ubuntu0~18.04.1

Login[17] or Register[18] to add favorites

File Archive:

April 2023

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa

File Tags

File Archives

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links
News by Month[113]
News Tags[114]
Files by Month[115]
File Tags[116]
File Directory[117]
About Us
History & Purpose[118]
Contact Information[119]
Terms of Service[120]
Privacy Statement[121]
Copyright Information[122]
Services
Security Services[123]
Hosting By
Rokasec[124]
close

Read more

Image
Back To Top

Pensée du jour :

Ce que l'homme a fait ,

l'homme peut le défaire.

 

"No secure path in the world"

Category

Popular Sections

About