Back to bug 2218566

Who	When	What	Removed	Added
Guilherme de Almeida Suckevicz	2023-06-29 14:15:01 UTC	Depends On		2218567
Guilherme de Almeida Suckevicz	2023-06-29 14:15:08 UTC	Blocks		2218568
Guilherme de Almeida Suckevicz	2023-06-29 14:18:31 UTC	Depends On		2218583, 2218581, 2218584, 2218585, 2218582
Sandipan Roy	2023-06-30 07:24:24 UTC	Summary	TRIAGE-CVE-2023-3297 accountsservice: use-after-free via a D-Bus message to the accounts-daemon process	CVE-2023-3297 accountsservice: use-after-free via a D-Bus message to the accounts-daemon process
		Alias	TRIAGE-CVE-2023-3297	CVE-2023-3297
Sandipan Roy	2023-06-30 07:26:29 UTC	Doc Text		A vulnerability was found in accountsservice. Using this security issue an unprivileged local attacker can trigger a use-after-free vulnerability in accountsservice by sending a D-Bus message to the accounts-daemon process. Exploitation is likely to be difficult, but this bug could potentially enable a local unprivileged attacker to gain root privileges.
Sandipan Roy	2023-06-30 07:27:24 UTC	Depends On		2218825, 2218826, 2218823, 2218824, 2218827, 2218828, 2218822
Paige Jung	2023-06-30 15:06:52 UTC	Doc Text	A vulnerability was found in accountsservice. Using this security issue an unprivileged local attacker can trigger a use-after-free vulnerability in accountsservice by sending a D-Bus message to the accounts-daemon process. Exploitation is likely to be difficult, but this bug could potentially enable a local unprivileged attacker to gain root privileges.	A vulnerability was found in accountsservice. An unprivileged local attacker can trigger a use-after-free vulnerability in accountsservice by sending a D-Bus message to the accounts-daemon process. Though exploitation is likely to be difficult, this issue could enable a local unprivileged attacker to gain root privileges.
Ray Strode [halfline]	2023-06-30 19:16:46 UTC	Resolution	---	NOTABUG
		Status	NEW	CLOSED
		Last Closed		2023-06-30 19:16:46 UTC

Back to bug 2218566