Oval Definition:oval:org.opensuse.security:def:20121989
Revision Date:2022-05-20Version:1
Title:CVE-2012-1989
Description:

telnet.rb in Puppet 2.7.x before 2.7.13 and Puppet Enterprise (PE) 1.2.x, 2.0.x, and 2.5.x before 2.5.1 allows local users to overwrite arbitrary files via a symlink attack on the NET::Telnet connection log (/tmp/out.log).
Family:unixClass:vulnerability
Status:Reference(s):CVE-2012-1989
Mitre CVE-2012-1989
SUSE CVE-2012-1989
openSUSE-SU-2012:0608-1
openSUSE-SU-2012:0608-1
openSUSE-SU-2012:0835-1
openSUSE-SU-2012:0835-1
SUSE-SU-2012:0771-1
SUSE-SU-2012:0771-1
Platform(s):openSUSE 12.1
openSUSE 12.1 Update
SUSE Linux Enterprise Desktop 11 SP1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for Teradata
SUSE Linux Enterprise Server 11 SP1 for VMware
SUSE Linux Enterprise Server 11 SP1-TERADATA
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • puppet-2.6.18-0.4 is installed
  • OR puppet-server-2.6.18-0.4 is installed
    • Definition Synopsis
  • Release Information
  • sled11-sp1 is installed
  • AND puppet less than 2.6.12-0.14.1
  • OR Package Information
  • sles11-sp1 is installed
  • OR sles11-sp1-vmware is installed
  • OR sles11-sp1_for_sp2 is installed
  • AND
  • puppet-server less than 2.6.12-0.14.1
  • OR puppet less than 2.6.12-0.14.1
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • puppet-2.6.18-0.4.2 is installed
  • OR puppet-server-2.6.18-0.4.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • puppet-2.7.26-0.5.1 is installed
  • OR puppet-server-2.7.26-0.5.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • puppet-2.6.18-0.4 is installed
  • OR puppet-server-2.6.18-0.4 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • puppet-2.7.26-0.5 is installed
  • OR puppet-server-2.7.26-0.5 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • puppet-2.6.12-0.14 is installed
  • OR puppet-server-2.6.12-0.14 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • puppet-2.6.18-0.4 is installed
  • OR puppet-server-2.6.18-0.4 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • puppet-2.7.26-0.5 is installed
  • OR puppet-server-2.7.26-0.5 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server 11 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed
  • AND
  • puppet-2.6.12-0.14 is installed
  • OR puppet-server-2.6.12-0.14 is installed
  • OR pwdutils-3.2.8-0.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • puppet-2.6.18-0.4.2 is installed
  • OR puppet-server-2.6.18-0.4.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • puppet-2.7.26-0.5.1 is installed
  • OR puppet-server-2.7.26-0.5.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • puppet-2.6.12-0.14.1 is installed
  • OR puppet-server-2.6.12-0.14.1 is installed
  • OR pwdutils-3.2.8-0.2.35 is installed
    • BACK