CVE-2017-8900

Priority
Description
LightDM through 1.22.0, when systemd is used in Ubuntu 16.10 and 17.x,
allows physically proximate attackers to bypass intended AppArmor
restrictions and visit the home directories of arbitrary users by
establishing a guest session.
Assigned-to
tyhicks
Notes
tyhicksThis issue was introduced when the user session handling moved from
upstart to systemd in Ubuntu 16.10.
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected
More Information

Updated: 2019-12-05 18:49:52 UTC (commit dd38ff22974aae499eb50644b9d5a2817483cbdb)