Linked by Thom Holwerda on Sun 12th Mar 2006 20:46 UTC, submitted by lotusleaf
A major, critical bug and possible security threat has been discovered in Ubuntu Breezy. Apparently, the 'root' password (not actually the root password because Ubuntu uses sudo) gets written into the installer's log files in clear text, and can be read by any account on the Ubuntu machine. The bug was first discovered and reproduced on the Ubuntu forums. The bug does not seem to affect Dapper, however, users upgrading from Breezy to Dapper might still be at risk because the log files are not modified. Update: Bug is fixed. Please upgrade.
Permalink for comment 104201
To read all comments associated with this story, please click here.
To read all comments associated with this story, please click here.
Recent Original Stories
Recent Comments
Headlines
Random Comments
Random Stories
Random OS Link
Member since:
2006-01-01
Every day is a hug day in the Ubuntu world. But there are special hug days that are also bug days. Some people also say that every day is a bug day. And then, logically, every day is a hug day and a bug day.
https://lists.ubuntu.com/archives/ubuntu-desktop/2006-February/00026...
Planning is one thing, but we'll surely stick to our concept of success: the Hug Day. This is a very special Bug Day: on Hug Day, when someone closes a bug, then someone else should hug him/her. Why? This is a very special way for us to tell everyone that we love contributions!
https://wiki.ubuntu.com/UbuntuBugDay
Dammit. Those Ubuntu marketing people really need to stop harassing Ubuntu devs by hugging them all the time. There is no doubt in my mind that this critical bug could have been easily avoided if only the PR department would let the devs concentrate on their work.