| Revision Date: | 2014-06-30 | Version: | 21 |
| Title: | USN-843-1 -- backuppc vulnerability |
| Description: | It was discovered that BackupPC did not restrict normal users from setting the ClientNameAlias parameter. An authenticated user could exploit this to gain access to unauthorized hosts. This update fixed the issue by preventing normal users from modifying the ClientNameAlias configuration parameter. |
| Family: | unix | Class: | patch |
| Status: | ACCEPTED | Reference(s): | CVE-2009-3369
USN-843-1
USN-843-1
|
| Platform(s): | Ubuntu 8.04
Ubuntu 8.10
Ubuntu 9.04
| Product(s): | backuppc
|
| Definition Synopsis |
| Release section Ubuntu 8.10 is installed
AND Installed architecture is all
AND backuppc DPKG is earlier than 3.1.0-3ubuntu2.1
OR Release section
Ubuntu 8.04 is installed
AND Installed architecture is all
AND backuppc DPKG is earlier than 3.0.0-4ubuntu1.1
OR Release section
Ubuntu 9.04 is installed
AND Installed architecture is all
AND backuppc DPKG is earlier than 3.1.0-4ubuntu1.1
|