Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:USN-4616-2
HistoryNov 04, 2020 - 12:07 p.m.

accountsservice vulnerabilities

2020-11-0412:07:44
Google
osv.dev
6
usn-4616-1
accountsservice
vulnerabilities
ubuntu 14.04
esm
kevin backhouse
matthias gerstner
denial of service
local attacker
arbitrary files
security update

AI Score

7.4

Confidence

High

EPSS

0.002

Percentile

55.7%

JSON

USN-4616-1 fixed several vulnerabilities in AccountsService. This update provides
the corresponding update for Ubuntu 14.04 ESM.

Original advisory details:

Kevin Backhouse discovered that AccountsService incorrectly dropped
privileges. A local user could possibly use this issue to cause
AccountsService to crash or hang, resulting in a denial of service.
(CVE-2020-16126)

Matthias Gerstner discovered that AccountsService incorrectly handled
certain path checks. A local attacker could possibly use this issue to
read arbitrary files. (CVE-2018-14036)

Related

openvas 8
ubuntu 2
nessus 10
osv 2
redhatcve 1
debiancve 2
suse 1
nvd 2
cve 2
prion 2
cvelist 2
ubuntucve 3
freebsd 1
veracode 1
rosalinux 1
githubexploit 1
centos 1
redhat 1
openvas
openvas
Ubuntu: Security Advisory (USN-4616-2)
2022-08-26 00:00:00
Ubuntu: Security Advisory (USN-4616-1)
2020-11-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:3625-1)
2021-06-09 00:00:00
ubuntu
ubuntu
AccountsService vulnerabilities
2020-11-04 00:00:00
AccountsService vulnerabilities
2020-11-03 00:00:00
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : AccountsService vulnerabilities (USN-4616-1)
2020-11-04 00:00:00
SUSE SLED15 / SLES15 Security Update : accountsservice (SUSE-SU-2018:3625-1)
2019-01-02 00:00:00
EulerOS 2.0 SP2 : accountsservice (EulerOS-SA-2019-2443)
2019-12-04 00:00:00
osv
osv
accountsservice vulnerabilities
2020-11-03 15:16:30
accountsservice-0.6.55-8.2 on GA media
2024-06-15 00:00:00
redhatcve
redhatcve
CVE-2018-14036
2018-07-13 15:49:08
debiancve
debiancve
CVE-2018-14036
2018-07-13 12:29:00
CVE-2020-16126
2020-11-11 04:15:12
suse
suse
Security update for accountsservice (moderate)
2018-11-10 00:24:45
nvd
nvd
CVE-2018-14036
2018-07-13 12:29:00
CVE-2020-16126
2020-11-11 04:15:12
cve
cve
CVE-2018-14036
2018-07-13 12:29:00
CVE-2020-16126
2020-11-11 04:15:12
prion
prion
Directory traversal
2018-07-13 12:29:00
Design/Logic Flaw
2020-11-11 04:15:00
cvelist
cvelist
CVE-2020-16126 accountsservice drops ruid, allows unprivileged users to send it signals
2020-11-11 04:10:15
CVE-2018-14036
2018-07-13 12:00:00
ubuntucve
ubuntucve
CVE-2020-16126
2020-11-03 00:00:00
CVE-2018-14036
2018-07-13 00:00:00
CVE-2022-1804
2022-05-24 00:00:00
freebsd
freebsd
AccountsService -- Insufficient path check in user_change_icon_file_authorized_cb()
2018-07-13 00:00:00
veracode
veracode
Directory Traversal
2021-02-03 07:54:45
rosalinux
rosalinux
Advisory ROSA-SA-2021-1804
2021-07-02 16:31:49
githubexploit
githubexploit
Exploit for Vulnerability in Freedesktop Accountsservice
2020-11-12 09:58:42
centos
centos
PackageKit, accountsservice, adwaita, appstream, at, atk, baobab, bolt, brasero, cairo, cheese, clutter, compat, control, dconf, devhelp, ekiga, empathy, eog, evince, evolution, file, flatpak, folks, fontconfig, freetype, fribidi, fwupd, fwupdate, gcr, gdk, gdm, gedit, geoclue2, geocode, gjs, glade, glib, glib2, glibmm24, gnome, gnote, gobject, gom, google, grilo, gsettings, gspell, gssdp, gstreamer1, gtk, gtk3, gtksourceview3, gucharmap, gupnp, gvfs, harfbuzz, json, libappstream, libchamplain, libcroco, libgdata, libgee, libgepub, libgexiv2, libgnomekbd, libgovirt, libgtop2, libgweather, libgxps, libical, libmediaart, libosinfo, libpeas, librsvg2, libsecret, libsoup, libwayland, libwnck3, mozjs52, mutter, nautilus, openchange, osinfo, pango, poppler, python2, rest, rhythmbox, seahorse, shotwell, sushi, totem, upower, vala, valadoc, vino, vte, vte291, wayland, webkitgtk4, xdg, yelp, zenity security update
2018-11-15 18:43:07
redhat
redhat
(RHSA-2018:3140) Moderate: GNOME security, bug fix, and enhancement update
2018-10-30 04:22:45

AI Score

7.4

Confidence

High

EPSS

0.002

Percentile

55.7%

JSON
Related for OSV:USN-4616-2
openvas8ubuntu2nessus10osv2redhatcve1debiancve2suse1nvd2cve2prion2cvelist2ubuntucve3freebsd1veracode1rosalinux1githubexploit1centos1redhat1