Wind River Support Network

HomeDefectsLIN10-10476
Fixed

LIN10-10476 : Security Advisory - glib-2.0 - CVE-2021-3800

Created: Aug 23, 2022    Updated: Nov 22, 2022
Resolved Date: Oct 29, 2022
Found In Version: 10.17.41.1
Fix Version: 10.17.41.27
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace

Description

A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.

CREATE(Triage):(User=admin) CVE-2021-3800 (https://nvd.nist.gov/vuln/detail/CVE-2021-3800)

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube