Ubuntu 8.10 : system-tools-backends regression (USN-663-1)
Medium Nessus Plugin ID 38095
SynopsisThe remote Ubuntu host is missing one or more security-related patches.
DescriptionIt was discovered that passwords changed (or new users created) via the 'Users and Groups' tool were created with 3DES hashing. This reduced the security of stored user passwords, and was a regression from the correct MD5 hashing. This update fixes the problem; future password changes will correct the hashing used. We apologize for the inconvenience.
Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpdate the affected system-tools-backends and / or system-tools-backends-dev packages.