Ubuntu Security Notice (C) 2008-2013 Canonical, Inc. / NASL script (C) 2008-2013 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related patches.
Sebastian Krahmer discovered that Postfix was not correctly handling
mailbox ownership when dealing with Linux's implementation of
hardlinking to symlinks. In certain mail spool configurations, a local
attacker could exploit this to append data to arbitrary files as the
root user. The default Ubuntu configuration was not vulnerable.
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 6.2
CVSS Temporal Score : 5.1
Public Exploit Available : true