[USN-5439-1] AccountsService vulnerability


========================================================================== Ubuntu Security Notice USN-5439-1 May 24, 2022
accountsservice vulnerability ==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
– Ubuntu 22.04 LTS
Summary:
AccountsService could be made to crash or stop responding.
Software Description: – accountsservice: query and manipulate user account information
Details:
Gunnar Hjalmarsson discovered that AccountsService incorrectly dropped privileges. A local user could possibly use this issue to cause AccountsService to crash or stop responding, resulting in a denial of service. (CVE-2022-1804)
Update instructions:
The problem can be corrected by updating your system to the following package versions:
Ubuntu 22.04 LTS: accountsservice 22.07.5-2ubuntu1.3 libaccountsservice0 22.07.5-2ubuntu1.3
After a standard system update you need to reboot your computer to make all the necessary changes.
References: ubuntu.com/security/notices/USN-5439-1 CVE-2022-1804
Package Information: launchpad.net/ubuntu/+source/accountsservice/22.07.5-2ubuntu1.3