Inadvertent Data Disclosure Vulnerability in URLSession

Inadvertent Data Disclosure Vulnerability in URLSession

CVE-2019-8790 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

This issue was addresses by updating incorrect URLSession file descriptors management logic to match Swift 5.0. This issue is fixed in Swift 5.1.1 for Ubuntu. Incorrect management of file descriptors in URLSession could lead to inadvertent data disclosure.

Learn more about our Cis Benchmark Audit For Ubuntu Linux.