Privacy concern in auto generated UbiquitySyslog.txt: leaks all visible SSIDs, enabling geolocating user
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
ubiquity (Ubuntu) |
Confirmed
|
Undecided
|
Unassigned |
Bug Description
When submitting a bug with "ubuntu-bug", it auto-uploads a UbiquitySyslog.txt file which contains all the visible SSIDs. This is a potential privacy concern as such information can be used to geolocate the launchpad user.
Clicking "Don't send" just closes the dialog box and no browser window is opened. I expected the browser window to still be opened even when I click "don't send", or let me choose what to send.
ProblemType: Bug
DistroRelease: Ubuntu 23.10
Package: ubiquity (not installed)
ProcVersionSign
Uname: Linux 6.3.0-7-generic x86_64
NonfreeKernelMo
ApportVersion: 2.27.0-0ubuntu2
Architecture: amd64
CasperMD5CheckR
CasperVersion: 1.482
CurrentDesktop: ubuntu:GNOME
Date: Sat Aug 26 04:48:15 2023
InstallCmdLine: BOOT_IMAGE=
LiveMediaBuild: Ubuntu 23.10 "Mantic Minotaur" - Daily amd64 (20230825)
ProcEnviron:
LANG=C.UTF-8
PATH=(custom, no user)
SHELL=/bin/bash
XDG_RUNTIME_
SourcePackage: ubiquity
UpgradeStatus: No upgrade log present (probably fresh install)
Status changed to 'Confirmed' because the bug affects multiple users.