Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b1cd15d7 by Salvatore Bonaccorso at 2022-02-22T07:32:55+01:00
Track upstream commit for CVE-2021-4115/policykit-1
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -14404,6 +14404,7 @@ CVE-2021-4115 [file descriptor leak allows an
unprivileged user to cause a crash
[stretch] - policykit-1 <not-affected> (Vulnerable code not present,
patch introducing issue not backported)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2007534
NOTE: https://securitylab.github.com/advisories/GHSL-2021-077-polkit/
+ NOTE: Fixed by:
https://gitlab.freedesktop.org/polkit/polkit/-/commit/41cb093f554da8772362654a128a84dd8a5542a7
NOTE: https://gitlab.freedesktop.org/polkit/polkit/-/issues/141
NOTE: Issue Upstream introduced in 0.113 with
https://gitlab.freedesktop.org/polkit/polkit/-/commit/bfa5036bfb93582c5a87c44b847957479d911e38
NOTE: Debian backported 0.113 commits in 0.105-26
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1cd15d7b753cb622bfdcf763bffdab3b09c109b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b1cd15d7b753cb622bfdcf763bffdab3b09c109b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
