Ubuntu Security Notice 922-1 – Stephane Chazelas discovered that libnss-db did not correctly set up a database environment. A local attacker could exploit this to read the first line of arbitrary files, leading to a loss of privacy and possibly privilege escalation.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/87911/USN-922-1.txt
Source: https://packetstormsecurity.com/files/87911/Ubuntu-Security-Notice-922-1.html