First published: Tue Oct 29 2024(Updated: )
USN-7064-1 fixed a vulnerability in nano. This update provides the corresponding update for Ubuntu 14.04 LTS. Original advisory details: It was discovered that nano allowed a possible privilege escalation through an insecure temporary file. If nano was killed while editing, the permissions granted to the emergency save file could be used by an attacker to escalate privileges using a malicious symlink.
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/nano | <2.2.6-1ubuntu1+esm1 | 2.2.6-1ubuntu1+esm1 |
Ubuntu Ubuntu | =14.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.