AVG-1857 log
| Package | xscreensaver |
| Status | Not affected |
| Severity | Medium |
| Type | privilege escalation |
| Affected | 5.44-3 |
| Fixed | Not affected |
| Current | 6.09-1 [extra] |
| Ticket | FS#70531 |
| Created | Wed Apr 21 19:34:18 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-31523 | Medium | No | Privilege escalation | The Debian xscreensaver 5.42+dfsg1-1 package for XScreenSaver has cap_net_raw enabled for the /usr/libexec/xscreensaver/sonar file, which allows local users... |
| Notes |
|---|
Arch Linux does not ship /usr/lib/xscreensaver/sonar with the CAP_NET_RAW capability enabled, so this issue cannot be exploited. |