Oval Definition:oval:org.opensuse.security:def:20195164
Revision Date:2022-06-30Version:1
Title:CVE-2019-5164
Description:

An exploitable code execution vulnerability exists in the ss-manager binary of Shadowsocks-libev 3.3.2. Specially crafted network packets sent to ss-manager can cause an arbitrary binary to run, resulting in code execution and privilege escalation. An attacker can send network packets to trigger this vulnerability.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2019-5164
openSUSE-SU-2019:2667-1
openSUSE-SU-2020:0142-1
Mitre CVE-2019-5164
SUSE CVE-2019-5164
openSUSE-SU-2019:2667-1
openSUSE-SU-2020:0142-1
Platform(s):openSUSE Leap 15.1
openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
SUSE Package Hub for SUSE Linux Enterprise 15 SP1
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libshadowsocks-libev2-3.3.3-lp151.2.3 is installed
  • AND libshadowsocks-libev2 is signed with openSUSE key
  • OR
  • shadowsocks-libev-3.3.3-lp151.2.3 is installed
  • AND shadowsocks-libev is signed with openSUSE key
  • OR
  • shadowsocks-libev-devel-3.3.3-lp151.2.3 is installed
  • AND shadowsocks-libev-devel is signed with openSUSE key
  • OR
  • shadowsocks-libev-doc-3.3.3-lp151.2.3 is installed
  • AND shadowsocks-libev-doc is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • libshadowsocks-libev2-3.3.5-1.9 is installed
  • OR shadowsocks-libev-3.3.5-1.9 is installed
  • OR shadowsocks-libev-devel-3.3.5-1.9 is installed
  • OR shadowsocks-libev-doc-3.3.5-1.9 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed
  • AND Package Information
  • libshadowsocks-libev2-3.3.3-bp151.5.3.1 is installed
  • OR shadowsocks-libev-3.3.3-bp151.5.3.1 is installed
  • OR shadowsocks-libev-devel-3.3.3-bp151.5.3.1 is installed
  • OR shadowsocks-libev-doc-3.3.3-bp151.5.3.1 is installed
    • BACK