Univention Bugzilla – Bug 46773
beep: Multiple issues (4.3)
Last modified: 2018-05-16 17:04:18 CEST
New Debian beep 1.3-4+deb9u1 fixes: This update addresses the following issue: * beep, if setuid, has a race condition that allows local privilege escalation. (CVE-2018-0492) Johnathan Nightingale beep through 1.3.4, if setuid, has a race condition that allows local privilege escalation.
[4.3-0] fb3bb4f94b Bug #46773: beep_1.3-4+deb9u1
--- mirror/ftp/4.3/unmaintained/4.3-0/source/beep_1.3-4.dsc +++ apt/ucs_4.3-0-errata4.3-0/source/beep_1.3-4+deb9u1.dsc @@ -1,3 +1,7 @@ +1.3-4+deb9u1 [Sun, 25 Mar 2018 19:25:00 +0200] Moritz Muehlenhoff <jmm@debian.org>: + + * CVE-2018-0492 + 1.3-4 [Mon, 04 Jan 2016 13:34:37 +0100] Rhonda D'Vine <rhonda@debian.org>: * Update my name.
* No UCS specific patches * Comparison to previously shipped version ok * Binary package update Ok * Advisory Ok
<http://errata.software-univention.de/ucs/4.3/43.html>