[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2021-3560/policykit-1 via unstable

Thu, 03 Jun 2021 11:50:04 -0700 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
6813a4e9 by Salvatore Bonaccorso at 2021-06-03T20:49:22+02:00
Track fixed version for CVE-2021-3560/policykit-1 via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -784,7 +784,7 @@ CVE-2021-3561 (An Out of Bounds flaw was found fig2dev 
version 3.2.8a. A flawed
        NOTE: 
https://sourceforge.net/p/mcj/fig2dev/ci/6827c09d2d6491cb2ae3ac7196439ff3aa791fd9/
 CVE-2021-3560 [local privilege escalation using 
polkit_system_bus_name_get_creds_sync()]
        RESERVED
-       - policykit-1 <unfixed> (bug #989429)
+       - policykit-1 0.105-31 (bug #989429)
        [buster] - policykit-1 <not-affected> (Vulnerable code introduced later)
        [stretch] - policykit-1 <not-affected> (Vulnerable code introduced 
later)
        NOTE: Issue Upstream introduced in 0.113 with 
https://gitlab.freedesktop.org/polkit/polkit/-/commit/bfa5036bfb93582c5a87c44b847957479d911e38



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6813a4e96146f8e9bc5cd932f51e8b65f652bf7a

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6813a4e96146f8e9bc5cd932f51e8b65f652bf7a
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to