Oval Definition:oval:org.opensuse.security:def:20147272
Revision Date:2022-06-30Version:1
Title:CVE-2014-7272
Description:

Simple Desktop Display Manager (SDDM) before 0.10.0 allows local users to gain root privileges because code running as root performs write operations within a user home directory, and this user may have created links in advance (exploitation requires the user to win a race condition in the ~/.Xauthority chown case, but not other cases).
Family:unixClass:vulnerability
Status:Reference(s):CVE-2014-7272
Mitre CVE-2014-7272
SUSE CVE-2014-7272
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.3
openSUSE Leap 15.4
openSUSE Leap 42.1
openSUSE Leap 42.2
openSUSE Leap 42.3
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • openSUSE Leap 42.1 is installed
  • AND Package Information
  • sddm-0.12.0-5.1 is installed
  • AND sddm is signed with openSUSE key
  • OR
  • sddm-branding-openSUSE-0.12.0-5.1 is installed
  • AND sddm-branding-openSUSE is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • sddm-0.13.0-8.1 is installed
  • AND sddm is signed with openSUSE key
  • OR
  • sddm-branding-openSUSE-0.13.0-8.1 is installed
  • AND sddm-branding-openSUSE is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • sddm-0.14.0-5 is installed
  • AND sddm is signed with openSUSE key
  • OR
  • sddm-branding-openSUSE-0.14.0-5 is installed
  • AND sddm-branding-openSUSE is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • sddm-0.17.0-lp150.8 is installed
  • AND sddm is signed with openSUSE key
  • OR
  • sddm-branding-openSUSE-0.17.0-lp150.8 is installed
  • AND sddm-branding-openSUSE is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • sddm-0.14.0-2.1 is installed
  • OR sddm-branding-openSUSE-0.14.0-2.1 is installed
  • OR sddm-branding-upstream-0.14.0-2.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.3 is installed
  • AND Package Information
  • sddm-0.18.0-lp153.1.31 is installed
  • AND sddm is signed with openSUSE key
  • OR
  • sddm-branding-openSUSE-0.18.0-lp153.1.31 is installed
  • AND sddm-branding-openSUSE is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 15.4 is installed
  • AND Package Information
  • sddm-0.19.0-lp154.3.6 is installed
  • AND sddm is signed with openSUSE key
  • OR
  • sddm-branding-openSUSE-0.19.0-lp154.3.6 is installed
  • AND sddm-branding-openSUSE is signed with openSUSE key
    • BACK