Oval Definition:oval:org.opensuse.security:def:111356
Revision Date:2021-04-30Version:1
Title:Security update for cifs-utils (Important)
Description:



This update for cifs-utils fixes the following security issues:

- CVE-2021-20208: Fixed a potential kerberos auth leak escaping from container. (bsc#1183239) - CVE-2020-14342: Fixed a shell command injection vulnerability in mount.cifs. (bsc#1174477)

This update for cifs-utils fixes the following issues:

- Solve invalid directory mounting. When attempting to change the current working directory into non-existing directories, mount.cifs crashes. (bsc#1152930)

- Fixed a bug where it was no longer possible to mount CIFS filesystem after the last maintenance update. (bsc#1184815)

This update was imported from the SUSE:SLE-15:Update update project.
Family:unixClass:patch
Status:Reference(s):1152930
1174477
1183239
1184815
CVE-2020-14342
CVE-2021-20208
openSUSE-SU-2021:0639-1
Platform(s):openSUSE Leap 15.2
Product(s):
Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • cifs-utils-6.9-lp152.2.3.1 is installed
  • OR cifs-utils-devel-6.9-lp152.2.3.1 is installed
  • OR pam_cifscreds-6.9-lp152.2.3.1 is installed
    • BACK