Critical translation mistake of "Authentication mode" list in localized gksu-properties (su ->Sudan Language) may cause incorrect choice causing system damages and security vulnerabilities
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| gksu (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned | ||
Bug Description
In dropdown list "Authentication mode" there is a critical translation mistake.
The command name "su" is interpreted by Pootle as a Sudan language.
A novice may not correctly understand the list and can make an incorrect choice that will cause serious system damages or security vulnerabilities. Incorrectly used root privilages may be a good gate for viruses and atackers.
I see this mistake in Ukrainian but it maybe the same in different languages. So I did not write directly to Ukrainian developer (Danilo) but send to bugs.lounchpad.net with security group notification.
Please verify localizations to prevent great problems.
I included a warning to
But it can not be a 100% protection.
ProblemType: Bug
DistroRelease: Ubuntu 13.04
Package: gksu 2.0.2-6ubuntu2
ProcVersionSign
Uname: Linux 3.8.0-21-generic x86_64
NonfreeKernelMo
ApportVersion: 2.9.2-0ubuntu8
Architecture: amd64
Date: Fri May 24 00:55:22 2013
InstallationDate: Installed on 2013-05-19 (4 days ago)
InstallationMedia: Ubuntu 13.04 "Raring Ringtail" - Release amd64 (20130424)
MarkForUpload: True
ProcEnviron:
TERM=xterm
PATH=(custom, no username)
XDG_RUNTIME_
LANG=uk_UA.UTF-8
SHELL=/bin/bash
SourcePackage: gksu
UpgradeStatus: No upgrade log present (probably fresh install)
| Viktor Mileikovskyi (v-mil) wrote | #1 |
| information type: | Private Security → Public Security |
| Changed in gksu (Ubuntu): | |
| status: | New → Confirmed |
