CVE-2021-3800
MEDIUM5.5EPSS 0.06%glib2.0 - security update
發布日:2022/8/23修改日:2026/4/28
描述
A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.
受影響套件(2)
- Debian/glib2.0from 0, < 2.64.0-1
- Debian/glib2.0from 0, < 2.58.3-2+deb10u4
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.5 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |