CVE-2021-3800

Опубликовано: 23 авг. 2022

Источник: debian

EPSS Низкий

Описание

A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
glib2.0	fixed	2.64.0-1		package

Примечания

https://gitlab.gnome.org/GNOME/glib/-/commit/3529bb4450a519959a5d9cb787404296322618a1 (2.63.6)
https://www.openwall.com/lists/oss-security/2017/06/23/8

EPSS

Процентиль: 17%

0.00056

Низкий

Связанные уязвимости

CVE-2021-3800

CVSS3: 5.5

ubuntu

около 3 лет назад

A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.

CVE-2021-3800

CVSS3: 5.5

redhat

больше 4 лет назад

A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.

CVE-2021-3800

CVSS3: 5.5

nvd

около 3 лет назад

A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.

CVE-2021-3800

CVSS3: 5.5

msrc

около 3 лет назад

Описание отсутствует

SUSE-SU-2022:0828-1

suse-cvrf

больше 3 лет назад

Security update for glib2

EPSS

Процентиль: 17%

0.00056

Низкий