 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2021-42523 |
| Description: | There are two Information Disclosure vulnerabilities in colord, and they lie in colord/src/cd-device-db.c and colord/src/cd-profile-db.c separately. They exist because the 'err_msg' of 'sqlite3_exec' is not releasing after use, while libxml2 emphasizes that the caller needs to release it. |
| Test IDs: | 1.3.6.1.4.1.25623.1.1.4.2022.3496.1 1.3.6.1.4.1.25623.1.1.2.2023.2407 1.3.6.1.4.1.25623.1.1.2.2023.1747 1.3.6.1.4.1.25623.1.1.2.2023.2498 1.3.6.1.4.1.25623.1.1.2.2022.2676 1.3.6.1.4.1.25623.1.1.2.2023.2186 1.3.6.1.4.1.25623.1.1.2.2023.1493 1.3.6.1.4.1.25623.1.1.4.2022.4410.1 1.3.6.1.4.1.25623.1.1.10.2022.0366 1.3.6.1.4.1.25623.1.1.2.2023.1492 1.3.6.1.4.1.25623.1.0.822634 1.3.6.1.4.1.25623.1.1.4.2022.4170.1 1.3.6.1.4.1.25623.1.1.2.2022.2644 |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2021-42523 https://github.com/hughsie/colord/issues/110 https://github.com/hughsie/colord/issues/110 |