AVG-1282 log
Package | swtpm |
Status | Fixed |
Severity | Medium |
Type | privilege escalation |
Affected | 0.5.0-2 |
Fixed | 0.5.1-1 |
Current | 0.9.0-1 [extra] |
Ticket | None |
Created | Wed Nov 18 20:40:47 2020 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2020-28407 | Medium | No | Privilege escalation | A potential symbolic link following issue has been found in swtpm before 0.5.1. |
Date | Advisory | Package | Type |
---|---|---|---|
19 Nov 2020 | ASA-202011-21 | swtpm | privilege escalation |
References |
---|
https://github.com/stefanberger/swtpm/compare/v0.5.0...v0.5.1 |