Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/accountsservice@0?distro=trixie
purl pkg:deb/debian/accountsservice@0?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (5)
Vulnerability Summary Aliases
VCID-4wd1-kxpx-9ugm An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, would perform unbounded read operations on user-controlled ~/.pam_environment files, allowing an infinite loop if /dev/zero is symlinked to this location. CVE-2020-16127
VCID-bqzt-u1sk-3fht accountsservice no longer drops permissions when writting .pam_environment CVE-2022-1804
VCID-bxkw-9x1u-sbhm accountsservice: use-after-free via a D-Bus message to the accounts-daemon process CVE-2023-3297
VCID-chd6-4yfy-x7hg An Ubuntu-specific modification to AccountsService in versions before 0.6.55-0ubuntu13.2, among other earlier versions, improperly dropped the ruid, allowing untrusted users to send signals to AccountService, thus stopping it from handling D-Bus messages in a timely fashion. CVE-2020-16126
VCID-pnj9-7czc-pqfc Ubuntu-specific modifications to accountsservice (in patch file debian/patches/0010-set-language.patch) caused the fallback_locale variable, pointing to static storage, to be freed, in the user_change_language_authorized_cb function. This is reachable via the SetLanguage dbus function. This is fixed in versions 0.6.55-0ubuntu12~20.04.5, 0.6.55-0ubuntu13.3, 0.6.55-0ubuntu14.1. CVE-2021-3939

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T13:08:03.969874+00:00 Debian Importer Fixing VCID-4wd1-kxpx-9ugm https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T12:58:16.792003+00:00 Debian Importer Fixing VCID-bxkw-9x1u-sbhm https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:44:30.639186+00:00 Debian Importer Fixing VCID-bqzt-u1sk-3fht https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:14:13.596706+00:00 Debian Importer Fixing VCID-pnj9-7czc-pqfc https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T10:01:23.775643+00:00 Debian Importer Fixing VCID-chd6-4yfy-x7hg https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T09:02:01.743148+00:00 Debian Importer Fixing VCID-4wd1-kxpx-9ugm https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:54:38.434969+00:00 Debian Importer Fixing VCID-bxkw-9x1u-sbhm https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T07:15:49.962181+00:00 Debian Importer Fixing VCID-bqzt-u1sk-3fht https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:53:00.861424+00:00 Debian Importer Fixing VCID-pnj9-7czc-pqfc https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T06:43:16.811836+00:00 Debian Importer Fixing VCID-chd6-4yfy-x7hg https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-02T17:17:28.098075+00:00 Debian Importer Fixing VCID-4wd1-kxpx-9ugm https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:16:48.699089+00:00 Debian Importer Fixing VCID-bxkw-9x1u-sbhm https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:09:16.440915+00:00 Debian Importer Fixing VCID-bqzt-u1sk-3fht https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:07:25.144618+00:00 Debian Importer Fixing VCID-pnj9-7czc-pqfc https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-02T17:06:45.897961+00:00 Debian Importer Fixing VCID-chd6-4yfy-x7hg https://security-tracker.debian.org/tracker/data/json 38.1.0