Unrated severityNVD Advisory· Published Oct 13, 2023· Updated Nov 20, 2025

Tracker-miners: sandbox escape

CVE-2023-5557

Description

A flaw was found in the tracker-miners package. A weakness in the sandbox allows a maliciously-crafted file to execute code outside the sandbox if the tracker-extract process has first been compromised by a separate vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Red Hat/Enterprise Linux Servercpe-rescue3 versions
cpe:/a:redhat:enterprise_linux:8::appstream+ 2 more
- cpe:/a:redhat:enterprise_linux:8::appstreamrange: 0:2.1.5-2.el8_9.1
- cpe:/a:redhat:enterprise_linux:9::appstreamrange: 0:3.1.2-4.el9_3
- cpe:/o:redhat:enterprise_linux:7
Red Hat/Enterprise Linux Update Services For Sap Solutionscpe-rescue2 versions
cpe:/a:redhat:rhel_aus:8.4::appstream+ 1 more
- cpe:/a:redhat:rhel_aus:8.4::appstreamrange: 0:2.1.5-2.el8_4.1
- cpe:/a:redhat:rhel_e4s:8.2::appstreamrange: 0:2.1.5-2.el8_2.1
Red Hat/Red Hat Enterprise Linux 8.6 Extended Update Supportv5
cpe:/a:redhat:rhel_eus:8.6::appstream
Range: 0:2.1.5-2.el8_6.1
Red Hat/Red Hat Enterprise Linux 8.8 Extended Update Supportv5
cpe:/a:redhat:rhel_eus:8.8::appstream
Range: 0:2.1.5-2.el8_8.1
Red Hat/Red Hat Enterprise Linux 9.0 Extended Update Supportv5
cpe:/a:redhat:rhel_eus:9.0::appstream
Range: 0:3.1.2-2.el9_0
Red Hat/Red Hat Enterprise Linux 9.2 Extended Update Supportv5
cpe:/a:redhat:rhel_eus:9.2::appstream
Range: 0:3.1.2-4.el9_2
Red Hat/tracker-minersllm-create
osv-coords7 versions
pkg:rpm/almalinux/tracker-miners pkg:rpm/opensuse/tracker-miners&distro=openSUSE%20Leap%2015.4 pkg:rpm/opensuse/tracker-miners&distro=openSUSE%20Leap%2015.5 pkg:rpm/suse/tracker-miners&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP4 pkg:rpm/suse/tracker-miners&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5 pkg:rpm/suse/tracker-miners&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP4 pkg:rpm/suse/tracker-miners&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP5
< 3.1.2-4.el9_3+ 6 more
- (no CPE)range: < 3.1.2-4.el9_3
- (no CPE)range: < 3.2.2-150400.3.7.1
- (no CPE)range: < 3.2.2-150400.3.7.1
- (no CPE)range: < 3.2.2-150400.3.7.1
- (no CPE)range: < 3.2.2-150400.3.7.1
- (no CPE)range: < 3.2.2-150400.3.7.1
- (no CPE)range: < 3.2.2-150400.3.7.1

Patches

Vulnerability mechanics

No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.

References

access.redhat.com/errata/RHSA-2023:7712mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2023:7713mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2023:7730mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2023:7731mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2023:7732mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2023:7733mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2023:7739mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2023:7744mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/security/cve/CVE-2023-5557mitrevdb-entryx_refsource_REDHAT
bugzilla.redhat.com/show_bug.cgimitreissue-trackingx_refsource_REDHAT

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000