Improper Handling of Temporary Files in MOTD Update Script in Ubuntu 18.04 LTS and 18.10

Improper Handling of Temporary Files in MOTD Update Script in Ubuntu 18.04 LTS and 18.10

CVE-2018-6557 · HIGH Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

The MOTD update script in the base-files package in Ubuntu 18.04 LTS before 10.1ubuntu2.2, and Ubuntu 18.10 before 10.1ubuntu6 incorrectly handled temporary files. A local attacker could use this issue to cause a denial of service, or possibly escalate privileges if kernel symlink restrictions were disabled.

Learn more about our Cis Benchmark Audit For Ubuntu Linux.