CVE-2021-3800
MEDIUM5.5EPSS 0.06%glib2.0 - security update
Published: 8/23/2022Modified: 4/28/2026
Description
A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.
Affected packages (2)
- Debian/glib2.0from 0, < 2.64.0-1
- Debian/glib2.0from 0, < 2.58.3-2+deb10u4
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.5 | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |