INFSA-2023:7712: tracker-miners security update
Information about definition
Identificator: INFSA-2023:7712
Type: security
Release date: 2025-03-05 17:44:59 UTC
Information about package
Tracker is a powerful desktop-neutral first class object database, tag/metadata database and search tool. This package contains various miners and metadata extractors for tracker.
Vulnerabilities description
- CVE-2023-5557
A flaw was found in the tracker-miners package. A weakness in the sandbox allows a maliciously-crafted file to execute code outside the sandbox if the tracker-extract process has first been compromised by a separate vulnerability.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2023-5557
|
no information | 7.5 | no information |
Updated packages