Your submission was sent successfully! Close

USN-1963-1: usb-creator vulnerability

18 September 2013

usb-creator could be tricked into bypassing polkit authorizations.

Releases

Packages

  • usb-creator - create a startup disk using a CD or disc image

Details

It was discovered that usb-creator was using polkit in an unsafe manner. A
local attacker could possibly use this issue to bypass intended polkit
authorizations.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 13.04
Ubuntu 12.10
Ubuntu 12.04

After a standard system update you need to reboot your computer to make
all the necessary changes.

References