tracker-miners-3.1.2-4.el9_3
エラータID: AXSA:2023-7044:02
Release date:
Thursday, December 21, 2023 - 02:52
Subject:
tracker-miners-3.1.2-4.el9_3
Affected Channels:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
Tracker is a powerful desktop-neutral first class object database, tag/metadata database and search tool. This package contains various miners and metadata extractors for tracker.
Security Fix(es):
* tracker-miners: sandbox escape (CVE-2023-5557)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2023-5557
A flaw was found in the tracker-miners package. A weakness in the sandbox allows a maliciously-crafted file to execute code outside the sandbox if the tracker-extract process has first been compromised by a separate vulnerability.
Solution:
Update packages.
CVEs:
CVE-2023-5557
A flaw was found in the tracker-miners package. A weakness in the sandbox allows a maliciously-crafted file to execute code outside the sandbox if the tracker-extract process has first been compromised by a separate vulnerability.
A flaw was found in the tracker-miners package. A weakness in the sandbox allows a maliciously-crafted file to execute code outside the sandbox if the tracker-extract process has first been compromised by a separate vulnerability.
Additional Info:
N/A
Download:
SRPMS
- tracker-miners-3.1.2-4.el9_3.src.rpm
MD5: 2201f56cb4f65808abfe291eb1227904
SHA-256: 8dff845398dd2c297397aa774883e52bd71650dfa2eff034d0939821438464ee
Size: 3.92 MB
Asianux Server 9 for x86_64
- tracker-miners-3.1.2-4.el9_3.x86_64.rpm
MD5: d72746f2099d4b6d5b71009de07eaf6f
SHA-256: a563add75bde684a57e987e4a90016734a50fa6f5b5495c3d352f9b4a4ed519e
Size: 889.25 kB
日本語