| Revision Date: | 2019-07-04 | Version: | 1 |
| Title: | Security update for libu2f-host, pam_u2f (Moderate) |
| Description: |
This update for libu2f-host and pam_u2f to version 1.0.8 fixes the following issues:
Security issues fixed for libu2f-host:
- CVE-2019-9578: Fixed a memory leak due to a wrong parse of init's response (bsc#1128140).
Security issues fixed for pam_u2f:
- CVE-2019-12209: Fixed an issue where symlinks in the user's directory were followed (bsc#1135729). - CVE-2019-12210: Fixed file descriptor leaks (bsc#1135727).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1128140
1135727
1135729
CVE-2019-12209
CVE-2019-12210
CVE-2019-9578
SUSE-SU-2019:1750-1
|
| Platform(s): | SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
| Product(s): | |