Ubuntu Security Notice 922-1 - Stephane Chazelas discovered that libnss-db did not correctly set up a database environment. A local attacker could exploit this to read the first line of arbitrary files, leading to a loss of privacy and possibly privilege escalation.
70403819b20428ba546f6947ef682a2e2317d3a060ae5d36e9898ae935c8d1f4