[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ubuntu-security-announce
Subject:    [USN-5234-1] Byobu vulnerability
From:       Camila Camargo de Matos <camila.camargodematos () canonical ! com>
Date:       2022-01-18 19:41:10
Message-ID: 661187a2-6e3a-1669-3363-434594639ff2 () canonical ! com
[Download RAW message or body]

[Attachment #2 (multipart/signed)]

[Attachment #4 (multipart/mixed)]


==========================================================================
Ubuntu Security Notice USN-5234-1
January 18, 2022

byobu vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 16.04 ESM

Summary:

Byobu could be made to expose sensitive information.

Software Description:
- byobu: text window manager, shell multiplexer, integrated DevOps environ

Details:

Sander Bos discovered that Byobu incorrectly handled certain Apport data.
An attacker could possibly use this issue to expose sensitive information.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 ESM:
byobu 5.106-0ubuntu1+esm1

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-5234-1
CVE-2019-7306




["OpenPGP_signature.asc" (application/pgp-signature)]
[Attachment #8 (text/plain)]

-- 
ubuntu-security-announce mailing list
ubuntu-security-announce@lists.ubuntu.com
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce


[prev in list] [next in list] [prev in thread] [next in thread]