Launchpad.net

CVE 2019-13313

libosinfo 1.5.0 allows local users to discover credentials by listing a process, because credentials are passed to osinfo-install-script via the command line.

See the CVE page on Mitre.org for more details.