Your submission was sent successfully! Close

USN-2471-1: GParted vulnerability

14 January 2015

GParted could be made to run programs as an administrator.

Releases

Packages

Details

Wolfgang Ettlinger discovered that GParted incorrectly filtered shell
metacharacters when running external commands. A local attacker could use
this issue with a crafted filesystem label to run arbitrary commands as the
administrator.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 12.04

In general, a standard system update will make all the necessary changes.

References