all InfoSec news
USN-5966-2: amanda regression
March 23, 2023, 2:28 p.m. |
Ubuntu security notices ubuntu.com
a regression in GNUTAR-based backups. This update reverts all of the
changes in amanda until a better fix is provided.
We apologize for the inconvenience.
Original advisory details:
Maher Azzouzi discovered an information disclosure vulnerability in the
calcsize binary within amanda. calcsize is a suid binary owned by root that
could possibly be used by a malicious local attacker to expose sensitive
file system information. (CVE-2022-37703)
Maher Azzouzi discovered a privilege escalation …
advisory amanda backups binary cve disclosure file system fix information information disclosure local malicious root system update usn vulnerabilities vulnerability
More from ubuntu.com / Ubuntu security notices
USN-6743-2: Linux kernel (Low Latency) vulnerabilities
1 day, 2 hours ago |
ubuntu.com
USN-6744-2: Pillow vulnerability
1 day, 6 hours ago |
ubuntu.com
USN-6744-1: Pillow vulnerability
1 day, 10 hours ago |
ubuntu.com
USN-6743-1: Linux kernel vulnerabilities
4 days, 6 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Security Engineer II, Offensive Security Penetration Testing
@ Amazon.com | US, TX, Virtual Location - Texas
Cybersecurity Specialist (Security Engineering)
@ Triton AI Pte Ltd | Singapore, Singapore, Singapore
Information Systems Security Officer (ISSO)
@ ARA | Arlington, Virginia, United States
Lead - IT Risk compliance & Info Security
@ First Advantage | Bengaluru-560042, Karnataka
Embedded VSOC Analyst
@ Sibylline Ltd | Australia, Australia