AVG-2577 log
| Package | quagga |
| Status | Not affected |
| Severity | Medium |
| Type | privilege escalation |
| Affected | 1.2.4-6 |
| Fixed | Not affected |
| Current | 1.2.4-9 [extra] |
| Ticket | None |
| Created | Fri Nov 19 21:38:55 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-44038 | Medium | No | Privilege escalation | An issue was discovered in Quagga through 1.2.4. Unsafe chown/chmod operations in the suggested spec file allow users (with control of the non-root-owned... |
| Notes |
|---|
Arch Linux does not use the vulnerable systemd service or spec file. |