USN-6190-1: AccountsService vulnerability
28 June 2023
AccountsService could be made to crash or run programs if it received specially crafted messages.
- accountsservice - query and manipulate user account information
Kevin Backhouse discovered that AccountsService incorrectly handled certain
D-Bus messages. A local attacker could use this issue to cause
AccountsService to crash, resulting in a denial of service, or possibly
execute arbitrary code.
The problem can be corrected by updating your system to the following package versions:
After a standard system update you need to reboot your computer to make all
the necessary changes.