[USN-4177-1] Rygel vulnerability

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

[USN-4177-1] Rygel vulnerability

Marc Deslauriers-3
Ubuntu Security Notice USN-4177-1
November 06, 2019

rygel vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 19.10


The system could be made to expose sensitive information.

Software Description:
- rygel: GNOME UPnP/DLNA services


It was discovered that the Rygel package automatically started the daemon
by default in user sessions. In certain environments, this resulted in
media being shared contrary to expectations.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 19.10:
  rygel                           0.38.1-2ubuntu3.3

After a standard system update you need to restart your session to make
all the necessary changes.


Package Information:

ubuntu-security-announce mailing list
[hidden email]
Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce

signature.asc (849 bytes) Download Attachment