Hi,
Attached is a patch to fix this issue.
I could not see any more vulnerable calls to gksu.
However, I could not find any kdesu calls to audit.
Thanks,
James
** Changed in: update-manager
Assignee: (unassigned) => James Westby (james-w)
Status: New => In Progress
** Attachment added: "update-manager-security.diff"
http://launchpadlibrarian.net/12173009/update-manager-security.diff
--
Update manager calls gksu instead of /usr/bin/gksu
https://bugs.launchpad.net/bugs/194166
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
