==========================================================================
Ubuntu Security Notice USN-3748-1
August 21, 2018

base-files vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 18.04 LTS

Summary:

base-files could be made to hang or overwrite files as the administrator.

Software Description:
– base-files: Debian base system miscellaneous files

Details:

Sander Bos discovered that the MOTD update script incorrectly handled
temporary files. A local attacker could use this issue to cause a denial of
service, or possibly escalate privileges if kernel symlink restrictions
were disabled.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.04 LTS:
base-files 10.1ubuntu2.2

In general, a standard system update will make all the necessary changes.

References:
https://usn.ubuntu.com/usn/usn-3748-1
CVE-2018-6557

Package Information:
https://launchpad.net/ubuntu/+source/base-files/10.1ubuntu2.2

—–BEGIN PGP SIGNATURE—–
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=Hbc0
—–END PGP SIGNATURE—–
—