tags pending
thanks
I don't believe this would affect other applications; colord in Debian
is run as the colord system user, rather than as root.
This is fixed in colord 0.1.15, which should be uploaded soon. Tagging
as such.
signature.asc
Description: This is a digitally signed message
Source: colord
Severity: grave
Tags: security
Hi,
the following vulnerability was reported on oss-security by Ludwig
Nussel of SuSE:
colord did not quote user supplied strings which made it prone to
SQL injections:
https://bugs.freedesktop.org/show_bug.cgi?id=42904
2 matches
Mail list logo
