2 matches found
CVE-2025-27512 Zincati allows unprivileged access to rpm-ostree D-Bus `Deploy()` and `FinalizeDeployment()` methods
Zincati is an auto-update agent for Fedora CoreOS hosts. Zincati ships a polkit rule which allows the zincati system user to use the actions org.projectatomic.rpmostree1.deploy to deploy updates to the system and org.projectatomic.rpmostree1.finalize-deployment to reboot the system into the...
Zincati 安全漏洞
Zincati is a Fedora CoreOS auto-update agent program from CoreOS Open Source. A security vulnerability exists in Zincati versions prior to v0.0.24 through v0.0.30, which stems from a logic error that could lead to the deployment of older versions by arbitrary users...