Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:USN-4616-1
HistoryNov 03, 2020 - 3:16 p.m.

accountsservice vulnerabilities

2020-11-0315:16:30
Google
osv.dev
5

6.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.8%

JSON

Kevin Backhouse discovered that AccountsService incorrectly dropped
privileges. A local user could possibly use this issue to cause
AccountsService to crash or hang, resulting in a denial of service.
(CVE-2020-16126)

Kevin Backhouse discovered that AccountsService incorrectly handled reading
.pam_environment files. A local user could possibly use this issue to cause
AccountsService to crash or hang, resulting in a denial of service. This
issue only affected Ubuntu 20.04 LTS and Ubuntu 20.10. (CVE-2020-16127)

Matthias Gerstner discovered that AccountsService incorrectly handled
certain path checks. A local attacker could possibly use this issue to
read arbitrary files. This issue only affected Ubuntu 16.04 LTS and Ubuntu
18.04 LTS. (CVE-2018-14036)

Related

nessus 10
openvas 8
ubuntu 2
rosalinux 1
osv 1
githubexploit 1
ubuntucve 4
prion 3
debiancve 3
nvd 3
redhatcve 1
suse 1
freebsd 1
veracode 1
cvelist 3
cve 3
redhat 1
centos 1
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : AccountsService vulnerabilities (USN-4616-1)
2020-11-04 00:00:00
openSUSE Security Update : accountsservice (openSUSE-2018-1380)
2018-11-10 00:00:00
FreeBSD : AccountService -- Insufficient path check in user_change_icon_file_authorized_cb() (75aae50b-9e3c-11eb-9bc3-8c164582fbac)
2021-04-16 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4616-1)
2020-11-04 00:00:00
Ubuntu: Security Advisory (USN-4616-2)
2022-08-26 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:3625-1)
2021-06-09 00:00:00
ubuntu
ubuntu
AccountsService vulnerabilities
2020-11-03 00:00:00
AccountsService vulnerabilities
2020-11-04 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1804
2021-07-02 16:31:49
osv
osv
accountsservice vulnerabilities
2020-11-04 12:07:44
githubexploit
githubexploit
Exploit for Vulnerability in Freedesktop Accountsservice
2020-11-12 09:58:42
ubuntucve
ubuntucve
CVE-2020-16127
2020-11-03 00:00:00
CVE-2020-16126
2020-11-03 00:00:00
CVE-2018-14036
2018-07-13 00:00:00
prion
prion
Code injection
2020-11-11 04:15:00
Design/Logic Flaw
2020-11-11 04:15:00
Directory traversal
2018-07-13 12:29:00
debiancve
debiancve
CVE-2020-16127
2020-11-11 04:15:12
CVE-2018-14036
2018-07-13 12:29:00
CVE-2020-16126
2020-11-11 04:15:12
nvd
nvd
CVE-2020-16127
2020-11-11 04:15:12
CVE-2020-16126
2020-11-11 04:15:12
CVE-2018-14036
2018-07-13 12:29:00
redhatcve
redhatcve
CVE-2018-14036
2018-07-13 15:49:08
suse
suse
Security update for accountsservice (moderate)
2018-11-10 00:24:45
freebsd
freebsd
AccountsService -- Insufficient path check in user_change_icon_file_authorized_cb()
2018-07-13 00:00:00
veracode
veracode
Directory Traversal
2021-02-03 07:54:45
cvelist
cvelist
CVE-2018-14036
2018-07-13 12:00:00
CVE-2020-16127 accountsservice .pam_environment infinite loop
2020-11-03 00:00:00
CVE-2020-16126 accountsservice drops ruid, allows unprivileged users to send it signals
2020-11-03 00:00:00
cve
cve
CVE-2020-16127
2020-11-11 04:15:12
CVE-2020-16126
2020-11-11 04:15:12
CVE-2018-14036
2018-07-13 12:29:00
redhat
redhat
(RHSA-2018:3140) Moderate: GNOME security, bug fix, and enhancement update
2018-10-30 04:22:45
centos
centos
PackageKit, accountsservice, adwaita, appstream, at, atk, baobab, bolt, brasero, cairo, cheese, clutter, compat, control, dconf, devhelp, ekiga, empathy, eog, evince, evolution, file, flatpak, folks, fontconfig, freetype, fribidi, fwupd, fwupdate, gcr, gdk, gdm, gedit, geoclue2, geocode, gjs, glade, glib, glib2, glibmm24, gnome, gnote, gobject, gom, google, grilo, gsettings, gspell, gssdp, gstreamer1, gtk, gtk3, gtksourceview3, gucharmap, gupnp, gvfs, harfbuzz, json, libappstream, libchamplain, libcroco, libgdata, libgee, libgepub, libgexiv2, libgnomekbd, libgovirt, libgtop2, libgweather, libgxps, libical, libmediaart, libosinfo, libpeas, librsvg2, libsecret, libsoup, libwayland, libwnck3, mozjs52, mutter, nautilus, openchange, osinfo, pango, poppler, python2, rest, rhythmbox, seahorse, shotwell, sushi, totem, upower, vala, valadoc, vino, vte, vte291, wayland, webkitgtk4, xdg, yelp, zenity security update
2018-11-15 18:43:07

6.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.8%

JSON
Related for OSV:USN-4616-1
nessus10openvas8ubuntu2rosalinux1osv1githubexploit1ubuntucve4prion3debiancve3nvd3redhatcve1suse1freebsd1veracode1cvelist3cve3redhat1centos1