CVE-2020-16121

Publication date 24 September 2020

Last updated 25 August 2025

Ubuntu priority

Low

Why this priority?

Cvss 3 Severity Score

3.3 · Low

Score breakdown

Description

PackageKit provided detailed error messages to unprivileged callers that exposed information about file presence and mimetype of files that the user would be unable to determine on its own.

Status

Package Ubuntu Release Status
packagekit 20.04 LTS focal
Fixed 1.1.13-2ubuntu1.1
18.04 LTS bionic
Fixed 1.1.9-1ubuntu2.18.04.6
16.04 LTS xenial
Fixed 0.8.17-4ubuntu6~gcc5.4ubuntu1.5
14.04 LTS trusty Not in release

Severity score breakdown

CVSS version: CVSS v3.0

Base score 3.3 · Low

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

References

Related Ubuntu Security Notices (USN)

    • USN-4538-1
    • PackageKit vulnerabilities
    • 24 September 2020

Other references

Access our resources on patching vulnerabilities