UbuntuUpdates.org

Package "shadow"

Name: shadow

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • system login tools
  • change and administer password and group data
  • programs to help use subuids

Latest version: 1:4.5-1ubuntu2.2
Release: bionic (18.04)
Level: security
Repository: main

Links



Other versions of "shadow" in Bionic

Repository Area Version
base main 1:4.5-1ubuntu1
updates main 1:4.5-1ubuntu2.2
proposed main 1:4.5-1ubuntu2.3

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1:4.5-1ubuntu2.2 2022-01-27 16:06:39 UTC

  shadow (1:4.5-1ubuntu2.2) bionic-security; urgency=medium

  * SECURITY UPDATE: Access to privileged information
    - debian/patches/CVE-2018-7169.patch: newgidmap:
      enforce setgroups=deny if self-mapping a group in
      src/newgidmap.c.
    - CVE-2018-7169

 -- Leonidas Da Silva Barbosa <email address hidden> Tue, 25 Jan 2022 13:26:21 -0300

CVE-2018-7169 An issue was discovered in shadow 4.5. newgidmap (in shadow-utils) is setuid and allows an unprivileged user to be placed in a user namespace where s



About   -   Send Feedback to @ubuntu_updates