CLSA-2026-1777378650

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2026-1777378650

Upstream

CVE-2023-26604

Published

2026-04-28T12:17:35Z

Modified

2026-06-04T09:47:37.674281242Z

Summary

Fix CVE(s): CVE-2023-26604

Details

SECURITY UPDATE: systemctl may pass arbitrary shell commands from a pager like more(1) that does not honor LESSSECURE, allowing privilege escalation under sudo.
- debian/patches/CVE-2023-26604.patch: set LESSSECURE=1 when invoking a pager, rename to SYSTEMDPAGERSECURE, gate insecure pagers behind sdpidgetowneruid()/euid check, skip non-"less" pagers in secure mode, and read the envvar via securegetenv(). Squash of upstream commits 612ebf6c91, 0a42426d79, and b8f736b30e (src/shared/pager.c only; man-page hunks dropped).
- CVE-2023-26604

References

https://errata.tuxcare.com/els_os/ubuntu20.04els/CLSA-2026-1777378650.html

Affected packages

TuxCare:Ubuntu:20.04

libnss-myhostname

Package

Name: libnss-myhostname
Purl: pkg:deb/tuxcare/libnss-myhostname?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

libnss-mymachines

Package

Name: libnss-mymachines
Purl: pkg:deb/tuxcare/libnss-mymachines?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

libnss-resolve

Package

Name: libnss-resolve
Purl: pkg:deb/tuxcare/libnss-resolve?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

libnss-systemd

Package

Name: libnss-systemd
Purl: pkg:deb/tuxcare/libnss-systemd?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

libpam-systemd

Package

Name: libpam-systemd
Purl: pkg:deb/tuxcare/libpam-systemd?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

libsystemd-dev

Package

Name: libsystemd-dev
Purl: pkg:deb/tuxcare/libsystemd-dev?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

libsystemd0

Package

Name: libsystemd0
Purl: pkg:deb/tuxcare/libsystemd0?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

libudev-dev

Package

Name: libudev-dev
Purl: pkg:deb/tuxcare/libudev-dev?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

libudev1

Package

Name: libudev1
Purl: pkg:deb/tuxcare/libudev1?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

systemd

Package

Name: systemd
Purl: pkg:deb/tuxcare/systemd?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

systemd-container

Package

Name: systemd-container
Purl: pkg:deb/tuxcare/systemd-container?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

systemd-coredump

Package

Name: systemd-coredump
Purl: pkg:deb/tuxcare/systemd-coredump?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

systemd-journal-remote

Package

Name: systemd-journal-remote
Purl: pkg:deb/tuxcare/systemd-journal-remote?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

systemd-sysv

Package

Name: systemd-sysv
Purl: pkg:deb/tuxcare/systemd-sysv?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

systemd-tests

Package

Name: systemd-tests
Purl: pkg:deb/tuxcare/systemd-tests?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

systemd-timesyncd

Package

Name: systemd-timesyncd
Purl: pkg:deb/tuxcare/systemd-timesyncd?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"

udev

Package

Name: udev
Purl: pkg:deb/tuxcare/udev?distro=ubuntu-20.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

245.4-4ubuntu3.24+tuxcare.els2

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu20.04els/CLSA-2026-1777378650.json"