all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

USN-5966-2: amanda regression

Add to bookmarks
March 23, 2023, 2:28 p.m. |

Ubuntu security notices ubuntu.com

USN-5966-1 fixed vulnerabilities in amanda. Unfortunately it introduced
a regression in GNUTAR-based backups. This update reverts all of the
changes in amanda until a better fix is provided.

We apologize for the inconvenience.

Original advisory details:

Maher Azzouzi discovered an information disclosure vulnerability in the
calcsize binary within amanda. calcsize is a suid binary owned by root that
could possibly be used by a malicious local attacker to expose sensitive
file system information. (CVE-2022-37703)

Maher Azzouzi discovered a privilege escalation …

advisory amanda backups binary cve disclosure file system fix information information disclosure local malicious root system update usn vulnerabilities vulnerability

Visit resource

More from ubuntu.com / Ubuntu security notices

USN-6742-2: Linux kernel vulnerabilities 2 hours ago | ubuntu.com
attacker authentication bluetooth connections +14
USN-6746-1: Google Guest Agent and Google OS Config Agent vulnerability 8 hours ago | ubuntu.com
agent attacker config denial of service +7
USN-6728-3: Squid vulnerability 8 hours ago | ubuntu.com
advisory crash cve disabled +12
USN-6743-2: Linux kernel (Low Latency) vulnerabilities 1 day, 2 hours ago | ubuntu.com
attacker bpf compromise cve +17
USN-6744-2: Pillow vulnerability 1 day, 6 hours ago | ubuntu.com
advisory automated buffer buffer overflow +15
USN-6745-1: Percona XtraBackup vulnerability 1 day, 8 hours ago | ubuntu.com
arbitrary code arbitrary code execution code code execution +5
USN-6738-1: LXD vulnerability 1 day, 10 hours ago | ubuntu.com
attacker automated binary bypass +17
USN-6744-1: Pillow vulnerability 1 day, 10 hours ago | ubuntu.com
arbitrary code attacker automated buffer +13
USN-6743-1: Linux kernel vulnerabilities 4 days, 6 hours ago | ubuntu.com
attacker bpf compromise cve +16

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Engineer II, Offensive Security Penetration Testing

@ Amazon.com | US, TX, Virtual Location - Texas
View on infosec-jobs.com

Cybersecurity Specialist (Security Engineering)

@ Triton AI Pte Ltd | Singapore, Singapore, Singapore
View on infosec-jobs.com

Information Systems Security Officer (ISSO)

@ ARA | Arlington, Virginia, United States
View on infosec-jobs.com

Lead - IT Risk compliance & Info Security

@ First Advantage | Bengaluru-560042, Karnataka
View on infosec-jobs.com

Embedded VSOC Analyst

@ Sibylline Ltd | Australia, Australia
View on infosec-jobs.com
View more jobs