CVE-2021-3800

Опубликовано: 23 авг. 2022

Источник: debian

Описание

A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
glib2.0	fixed	2.64.0-1		package

Примечания

https://gitlab.gnome.org/GNOME/glib/-/commit/3529bb4450a519959a5d9cb787404296322618a1 (2.63.6)
https://www.openwall.com/lists/oss-security/2017/06/23/8

Связанные уязвимости

CVE-2021-3800

CVSS3: 5.5

ubuntu

больше 3 лет назад

A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.

CVE-2021-3800

CVSS3: 5.5

redhat

почти 5 лет назад

A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.

CVE-2021-3800

CVSS3: 5.5

nvd

больше 3 лет назад

A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.

CVE-2021-3800

CVSS3: 5.5

msrc

больше 3 лет назад

A flaw was found in glib before version 2.63.6. Due to random charset alias pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.

SUSE-SU-2022:0828-1

suse-cvrf

почти 4 года назад

Security update for glib2