Major security issue in Ubuntu Desktop default config - Removable Media
Bug #1983778 reported by
niix
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
GSettings Desktop Schemas |
Fix Released
|
Unknown
|
|||
gsettings-desktop-schemas (Ubuntu) |
Fix Released
|
Wishlist
|
Unassigned |
Bug Description
There is a MAJOR SECURITY VULNERABILITY in Ubuntu Desktop since release 18.04 !
Recently I used Ubuntu 22.04 LTS and noticed that the issue still exist!
I don’t know the reason for it, but default values for “Removable Media” are VERY Risky!
It will automatically run the software which is attached to the removable media.
Why? Why has Ubuntu still didn’t disable that option?
The following is the default configuration (the “bad” configuration):
https:/
The following is the configuration which Ubuntu should be having (it is the fix to the problem):
https:/
Please change the default configurations for Ubuntu!
information type: | Private Security → Public Security |
Changed in gnome-control-center: | |
status: | Unknown → New |
Changed in gnome-control-center: | |
status: | New → Fix Released |
affects: | gnome-control-center → gsettings-desktop-schemas |
Changed in gsettings-desktop-schemas: | |
status: | Fix Released → Unknown |
Changed in gsettings-desktop-schemas: | |
status: | Unknown → New |
Changed in gsettings-desktop-schemas: | |
status: | New → Fix Released |
affects: | gnome-control-center (Ubuntu) → gsettings-desktop-schemas (Ubuntu) |
Changed in gsettings-desktop-schemas (Ubuntu): | |
status: | Confirmed → Fix Committed |
To post a comment you must log in.
I am attaching the file "Better_ Configuration_ TBD.png" which shows the fix to this issue - this is the desired solution for the issue.