Ubuntu Security Notice USN-663-1
5th November, 2008
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 8.10
It was discovered that passwords changed (or new users created) via the
"Users and Groups" tool were created with 3DES hashing. This reduced the
security of stored user passwords, and was a regression from the correct
MD5 hashing. This update fixes the problem; future password changes
will correct the hashing used. We apologize for the inconvenience.
The problem can be corrected by updating your system to the following package version:
To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades.
In general, a standard system upgrade is sufficient to effect the