I don't plan on fixing this for Trusty. Trusty has a very early upstream
commit, and it goes EOL in a few months. In my personal opinion, it's
not worth the many hours it'll take to properly backport and test it.
** Changed in: pam-kwallet (Ubuntu Trusty)
Assignee: Simon Quigley (tsimonq2)
This bug was fixed in the package kwallet-pam - 4:5.12.4-0ubuntu1.3
---
kwallet-pam (4:5.12.4-0ubuntu1.3) bionic-security; urgency=medium
* SECURITY UPDATE: Access to privileged files (LP: #1768649):
- fix-CVE-2018-10380-1.patch
- fix-CVE-2018-10380-2.patch
-
This bug was fixed in the package kwallet-pam - 4:5.10.5-0ubuntu1.3
---
kwallet-pam (4:5.10.5-0ubuntu1.3) artful-security; urgency=medium
* SECURITY UPDATE: Access to privileged files (LP: #1768649):
- fix-CVE-2018-10380-1.patch
- fix-CVE-2018-10380-2.patch
-
This bug was fixed in the package kwallet-pam - 4:5.5.5-0ubuntu1.3
---
kwallet-pam (4:5.5.5-0ubuntu1.3) xenial-security; urgency=medium
* SECURITY UPDATE: Access to privileged files (LP: #1768649):
- fix-CVE-2018-10380-1.patch
- fix-CVE-2018-10380-2.patch
-
4:5.12.4-0ubuntu1.3 in Bionic tests ok for me.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1768649
Title:
[CVE] Access to privileged files
To manage notifications about this bug go to:
I have tested each of these fixes on fresh Lubuntu VMs Xenial, Artful,
and Bionic (to ensure that there are no regressions caused by non-KDE
environments). They work as intended.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
** Tags added: community-security
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1768649
Title:
[CVE] Access to privileged files
To manage notifications about this bug go to:
Xenial, Artful, and Bionic packages are in https://launchpad.net
/~ubuntu-security-proposed/+archive/ubuntu/ppa/+packages for testing,
thanks to Simon. Feedback appreciated.
Thanks
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
** Changed in: kwallet-pam (Ubuntu Bionic)
Status: Fix Released => Triaged
** Changed in: kwallet-pam (Ubuntu Artful)
Status: Fix Released => Triaged
** Changed in: kwallet-pam (Ubuntu Xenial)
Status: Fix Released => Triaged
--
You received this bug notification because
Since there is no actionable item to be sponsored here, unsubscribing
the ubuntu-security-sponsors. If someone adds a new debdiff to this bug,
please subscribe ubuntu-security-sponsors again. Thanks!
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is
Why was the fix reverted? Will kwallet be repatched to fix the CVE?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1768649
Title:
[CVE] Access to privileged files
To manage notifications about this
Czikus, note that the CVE fix was reverted four hours ago. If you're
still having problems, please re-run:
sudo apt-get update
sudo apt-get -u dist-upgrade
and restart your session if needed.
Thanks
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is
Same problem, no access to kwallet.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1768649
Title:
[CVE] Access to privileged files
To manage notifications about this bug go to:
Hello,
Since I did the upgrade. Kwallet is broken. I can't access to any
wallet.
Here is my configuration :
Ubuntu 16.04
My installed packages :
# dpkg -l | grep kwallet
ii kwalletcli 2.12-5
This bug was fixed in the package kwallet-pam - 4:5.12.4-0ubuntu1.1
---
kwallet-pam (4:5.12.4-0ubuntu1.1) bionic-security; urgency=medium
* SECURITY UPDATE: Access to privileged files (LP: #1768649):
- fix-CVE-2018-10380-1.patch
- fix-CVE-2018-10380-2.patch
-
This bug was fixed in the package kwallet-pam - 4:5.5.5-0ubuntu1.1
---
kwallet-pam (4:5.5.5-0ubuntu1.1) xenial-security; urgency=medium
* SECURITY UPDATE: Access to privileged files (LP: #1768649):
- fix-CVE-2018-10380-1.patch
- fix-CVE-2018-10380-2.patch
-
This bug was fixed in the package kwallet-pam - 4:5.10.5-0ubuntu1.1
---
kwallet-pam (4:5.10.5-0ubuntu1.1) artful-security; urgency=medium
* SECURITY UPDATE: Access to privileged files (LP: #1768649):
- fix-CVE-2018-10380-1.patch
- fix-CVE-2018-10380-2.patch
-
Updated packages are in the security proposed PPA. I have tested all
three in fresh, fully updated virtual machines of each release, and all
three work.
The Trusty backport is pending a review, but I would call the Xenial,
Artful, and Bionic updates good.
** Changed in: kwallet-pam (Ubuntu
This bug was fixed in the package kwallet-pam - 4:5.12.5-0ubuntu1
---
kwallet-pam (4:5.12.5-0ubuntu1) cosmic; urgency=medium
* SECURITY UPDATE: Access to privileged files (LP: #1768649)
- debian/patches/CVE-2018-10380-salt-creation.diff: Move salt
creation to an
** Changed in: kwallet-pam (Ubuntu Cosmic)
Assignee: Simon Quigley (tsimonq2) => Rik Mills (rikmills)
** Changed in: kwallet-pam (Ubuntu Bionic)
Status: New => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
** Information type changed from Private Security to Public Security
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1768649
Title:
[CVE] Access to privileged files
To manage notifications about
21 matches
Mail list logo