Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 766d49a5 by Salvatore Bonaccorso at 2021-03-18T21:22:14+01:00 Add new guix issue (#985467) - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -1,3 +1,9 @@ +CVE-2021-XXXX [Local privilege escalation via guix-daemon and --keep-failed] + - guix <unfixed> (bug #985467; unimportant) + NOTE: https://issues.guix.gnu.org/47229 + NOTE: https://git.savannah.gnu.org/cgit/guix.git/commit/?id=ec7fb669945bfb47c5e1fdf7de3a5d07f7002ccf + NOTE: https://guix.gnu.org/en/blog/2021/risk-of-local-privilege-escalation-via-guix-daemon/ + NOTE: Neutralised by kernel hardening (fs.protected_hardlinks = 1) CVE-2021-28830 RESERVED CVE-2021-28829 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/766d49a5cb21cd1de5ce0fe536ff542c727a5b05 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/766d49a5cb21cd1de5ce0fe536ff542c727a5b05 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
