rss-bot
March 3rd, 2009, 04:10 PM
Referenced CVEs:
CVE-2009-0365
Description:
================================================== ========= Ubuntu Security Notice USN-727-2 March 03, 2009 network-manager vulnerability CVE-2009-0365 ================================================== ========= A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: network-manager-gnome 0.6.2-0ubuntu7.1 Ubuntu 8.10: network-manager 0.7~~svn20081018t105859-0ubuntu1.8.10.2 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: USN-727-1 fixed vulnerabilities in network-manager-applet. This advisory provides the corresponding updates for NetworkManager. It was discovered that NetworkManager did not properly enforce permissions when responding to dbus requests. A local user could perform dbus queries to view system and user network connection passwords and pre-shared keys.
More... (http://www.ubuntu.com/usn/USN-727-2)
CVE-2009-0365
Description:
================================================== ========= Ubuntu Security Notice USN-727-2 March 03, 2009 network-manager vulnerability CVE-2009-0365 ================================================== ========= A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS Ubuntu 8.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: network-manager-gnome 0.6.2-0ubuntu7.1 Ubuntu 8.10: network-manager 0.7~~svn20081018t105859-0ubuntu1.8.10.2 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: USN-727-1 fixed vulnerabilities in network-manager-applet. This advisory provides the corresponding updates for NetworkManager. It was discovered that NetworkManager did not properly enforce permissions when responding to dbus requests. A local user could perform dbus queries to view system and user network connection passwords and pre-shared keys.
More... (http://www.ubuntu.com/usn/USN-727-2)