==========================================================================
Ubuntu Security Notice USN-6554-1
December 13, 2023gnome-control-center vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 23.10
- Ubuntu 23.04
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Summary:
GNOME Settings could allow unintended access to network services.
Software Description:
- gnome-control-center: utilities to configure the GNOME desktop
Details:
Zygmunt Krynicki discovered that GNOME Settings did not accurately reflect
the SSH remote login status when the system was configured to use systemd
socket activation for OpenSSH. Remote SSH access may be unknowingly
enabled, contrary to expectation.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 23.10:
gnome-control-center 1:45.0-1ubuntu3.1
Ubuntu 23.04:
gnome-control-center 1:44.0-1ubuntu6.1
Ubuntu 22.04 LTS:
gnome-control-center 1:41.7-0ubuntu0.22.04.8
Ubuntu 20.04 LTS:
gnome-control-center 1:3.36.5-0ubuntu4.1
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-6554-1
CVE-2023-5616
Package Information:
https://launchpad.net/ubuntu/+source/gnome-control-center/1:45.0-1ubuntu3.1
https://launchpad.net/ubuntu/+source/gnome-control-center/1:44.0-1ubuntu6.1
https://launchpad.net/ubuntu/+source/gnome-control-center/1:41.7-0ubuntu0.22.04.8
https://launchpad.net/ubuntu/+source/gnome-control-center/1:3.36.5-0ubuntu4.1