Arch Linux

Please read this before reporting a bug:
https://wiki.archlinux.org/index.php/Reporting_Bug_Guidelines

Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.

REPEAT: Do NOT report bugs for outdated packages!
Tasklist

FS#69314 - [hylafax] [Security] privilege escalation (CVE-2020-15397 CVE-2020-15396)

Attached to Project: Arch Linux
Opened by Jonas Witschel (diabonas) - Wednesday, 13 January 2021, 21:10 GMT
Task Type Bug Report
Category Security
Status Unconfirmed
Assigned To No-one
Architecture All
Severity Medium
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 0%
Votes 0
Private No

Details

Summary
=======

The package hylafax is vulnerable to privilege escalation via CVE-2020-15397 and CVE-2020-15396.

Guidance
========

Applying the commit referenced below fixes both security issues.

References
==========

https://security.archlinux.org/AVG-1447
https://sourceforge.net/p/hylafax/HylaFAX+/2534/
This task depends upon

Loading...