OVAL Reference oval:org.opensuse.security:def:201716933

Oval Definition:

oval:org.opensuse.security:def:201716933

Revision Date:	2022-06-30	Version:	1
Title:	CVE-2017-16933
Description:	etc/initsystem/prepare-dirs in Icinga 2.x through 2.8.1 has a chown call for a filename in a user-writable directory, which allows local users to gain privileges by leveraging access to the $ICINGA2_USER account for creation of a link.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	Mitre CVE-2017-16933 SUSE CVE-2017-16933
Platform(s):	openSUSE Tumbleweed	Product(s):
Definition Synopsis
openSUSE Tumbleweed is installed AND Package Information icinga2-2.13.1-1.3 is installed OR icinga2-bin-2.13.1-1.3 is installed OR icinga2-common-2.13.1-1.3 is installed OR icinga2-doc-2.13.1-1.3 is installed OR icinga2-ido-mysql-2.13.1-1.3 is installed OR icinga2-ido-pgsql-2.13.1-1.3 is installed OR nano-icinga2-2.13.1-1.3 is installed OR vim-icinga2-2.13.1-1.3 is installed