14 DAY TRIAL // Canonical has published details in a security notice about a pyCADF vulnerability in Ubuntu 14.04 LTS (Trusty Tahr) that has been identified and corrected.
The Ubuntu developers have explained that python-pycadf could have been made to expose sensitive information.
According to the security notice, "Zhi Kun Liu discovered that pyCADF incorrectly filtered certain tokens. An attacker could possibly use this issue to obtain authentication tokens used in REST requests."
For a more detailed description of the problems, you can see Canonical's security notification. You should upgrade your Linux distribution in order fix any problems.
The flaw can be fixed if you upgrade your system(s) to the latest python-pycadf package. To apply the patch, you can simply run the Update Manager application.
If you don't want to use the Software Updater, you can open a terminal and enter the following commands (you have to be root):
sudo apt-get update sudo apt-get dist-upgrade
In general, a standard system update will make all the required changes. You don't need to restart the system in order to complete the update.
Performing a system update from time to time is actually a good idea. Users might pick up some updates for other vulnerabilities and even for the Linux kernel.