Debian Base-Files vulnerabilities

CVE-2018-6557 [HIGH] CVE-2018-6557: base-files - The MOTD update script in the base-files package in Ubuntu 18.04 LTS before 10.1... The MOTD update script in the base-files package in Ubuntu 18.04 LTS before 10.1ubuntu2.2, and Ubuntu 18.10 before 10.1ubuntu6 incorrectly handled temporary files. A local attacker could use this issue to cause a denial of service, or possibly escalate privileges if kernel symlink restrictions were disabled. Scope: local bookworm: resolved bullseye: resolved forky:

CVE-2010-0834 [CRITICAL] CVE-2010-0834: base-files - The base-files package before 5.0.0ubuntu7.1 on Ubuntu 9.10 and before 5.0.0ubun... The base-files package before 5.0.0ubuntu7.1 on Ubuntu 9.10 and before 5.0.0ubuntu20.10.04.2 on Ubuntu 10.04 LTS, as shipped on Dell Latitude 2110 netbooks, does not require authentication for package installation, which allows remote archive servers and man-in-the-middle attackers to execute arbitrary code via a crafted package. Scope: local bookworm: resolved