Lucene search
Gentoo FoundationMGASA-2020-0415HistoryNov 14, 2020 - 12:20 a.m.
Updated packagekit packages fix a security vulnerability
2020-11-1400:20:36
Gentoo Foundation
advisories.mageia.org
11
0.0004 Low
EPSS
Percentile
12.6%
It was discovered that packagekit was subject to a vulnerability where the InstallFiles, GetFilesLocal and GetDetailsLocal methods of the DBus interface to PackageKit accesses given files before checking for authorization. This allows non-privileged users to learn the MIME type of any file on the system. (CVE-2020-16121)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 7 | noarch | packagekit | < 1.1.12-3.1 | packagekit-1.1.12-3.1.mga7 |
Related
ubuntucve
ubuntucve
CVE-2020-16121
2020-09-24 00:00:00
nessus
nessus
openSUSE Security Update : PackageKit (openSUSE-2020-2292)
2021-01-25 00:00:00
openSUSE Security Update : PackageKit (openSUSE-2020-2344)
2021-01-25 00:00:00
Debian DLA-2399-1 : packagekit security update
2020-10-08 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:3845-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:3909-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:3911-1)
2021-06-09 00:00:00
veracode
veracode
Information Disclosure
2020-12-06 03:29:16
prion
prion
Information disclosure
2020-11-07 04:15:00
cve
cve
CVE-2020-16121
2020-11-07 04:15:12
debiancve
debiancve
CVE-2020-16121
2020-11-07 04:15:12
cvelist
cvelist
archlinux
archlinux
[ASA-202106-18] packagekit: information disclosure
2021-06-01 00:00:00
redhatcve
redhatcve
CVE-2020-16121
2020-10-02 10:22:25