Oval Definition:oval:org.opensuse.security:def:20141402
Revision Date:2022-05-22Version:1
Title:CVE-2014-1402
Description:

The default configuration for bccache.FileSystemBytecodeCache in Jinja2 before 2.7.2 does not properly create temporary files, which allows local users to gain privileges via a crafted .cache file with a name starting with __jinja2_ in /tmp.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2014-1402
SUSE CVE-2014-1402
SUSE-SU-2014:0996-1
SUSE-SU-2014:1010-1
SUSE-SU-2014:1010-2
Platform(s):SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed
  • AND Package Information
  • e2fsprogs is affected
  • OR libcom_err2 is affected
  • OR libcom_err2-32bit is affected
  • OR libext2fs2 is affected
    • Definition Synopsis
  • Release Information
  • SUSE OpenStack Cloud 8 is installed
  • OR SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • e2fsprogs is affected
  • OR libcom_err2 is affected
  • OR libcom_err2-32bit is affected
  • OR libext2fs2 is affected
    • BACK