This bug was fixed in the package gnome-remote-desktop -
46.2-1~ubuntu24.04.2
---
gnome-remote-desktop (46.2-1~ubuntu24.04.2) noble-security; urgency=medium
* debian/rules: ignore failing tests on armhf and riscv64.
gnome-remote-desktop (46.2-1~ubuntu24.04.1) noble; urgency=medium
* No-change backport to noble
gnome-remote-desktop (46.2-1) experimental; urgency=medium
* SECURITY UPDATE: New upstream release (LP: #2066306)
- CVE-2024-5148 Limit login screen->user session handover access
to appropriate user. This issue only affected the 46 series.
- Various security hardening improvements
- Potential crasher fix
- Improved disconnection messages
- Broader client compatibility support
gnome-remote-desktop (46.1-4) experimental; urgency=medium
* Run dh_installtmpfiles, then dh_installsysfiles, then dh_installtmpfiles
(LP: #206)
gnome-remote-desktop (46.1-3) experimental; urgency=medium
* Ensure that dh_installtmpfiles is run before dh_installsysusers
(LP: #206)
* Temporarily ignore build test failures on Debian
gnome-remote-desktop (46.1-2) experimental; urgency=medium
* Opt into Salsa CI
* Simplify running dh_auto_test
* Run dh_installsysusers & dh_installtmpfiles (Closes: #1070119)
(LP: #206)
-- Marc Deslauriers Thu, 23 May 2024
07:50:49 -0400
** Changed in: gnome-remote-desktop (Ubuntu Noble)
Status: New => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2066306
Title:
CVE-2024-5148: limit session handover to appropriate user
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/gnome-remote-desktop/+bug/2066306/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
