Packages
- cinnamon - Innovative and comfortable desktop
Details
Matthias Gerstner discovered that the cinnamon-settings-users utility in
Cinnamon did not safely handle symlinks. An unprivileged attacker could
potentially use this vulnerability to overwrite arbitrary files as root.
Matthias Gerstner discovered that the cinnamon-settings-users utility in
Cinnamon did not safely handle symlinks. An unprivileged attacker could
potentially use this vulnerability to overwrite arbitrary files as root.
Update instructions
In general, a standard system update will make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
| Ubuntu Release | Package Version | ||
|---|---|---|---|
| 18.04 LTS bionic | cinnamon-common – 3.6.7-8ubuntu1+esm1 | ||
| cinnamon – 3.6.7-8ubuntu1+esm1 | |||
| 16.04 LTS xenial | cinnamon-common – 2.8.6-1ubuntu1+esm1 | ||
| cinnamon – 2.8.6-1ubuntu1+esm1 | |||
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.