PAM MOTD module: vulnerability

Users of PAM MOTD module please be advised of a vulnerability that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)

USN-959-2: [USN-959-2] PAM vulnerability
Original advisory details:

Denis Excoffier discovered that the PAM MOTD module in Ubuntu did

not correctly handle path permissions when creating user file stamps.

A local attacker could exploit this to gain root privilieges.Read more at http://www.criticalwatch.com

 

Advertisements