rpm package
opensuse/accountservice&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/accountservice&distro=openSUSE%20Tumbleweed
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-14036 | Med | 6.5 | < 0.6.55-8.2 | 0.6.55-8.2 | Jul 13, 2018 | Directory Traversal with ../ sequences occurs in AccountsService before 0.6.50 because of an insufficient path check in user_change_icon_file_authorized_cb() in user.c. |
- affected < 0.6.55-8.2fixed 0.6.55-8.2
Directory Traversal with ../ sequences occurs in AccountsService before 0.6.50 because of an insufficient path check in user_change_icon_file_authorized_cb() in user.c.