Oval Definition:	oval:org.opensuse.security:def:202024330
Revision Date: 2023-06-22 Version: 1 Title: CVE-2020-24330 Description: An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges instead of by the tss user, it fails to drop the root gid privilege when no longer needed. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2020-24330 SUSE CVE-2020-24330 SUSE-SU-2022:2798-1 SUSE-SU-2022:2800-1 Platform(s): openSUSE Leap 15.4 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise Desktop 15 SP4 SUSE Linux Enterprise Desktop 15 SP5 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15 SP4 SUSE Linux Enterprise High Performance Computing 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP4 SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SP5 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND trousers is affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 is installed OR SUSE Linux Enterprise High Performance Computing 15 is installed OR SUSE Linux Enterprise Module for Basesystem 15 is installed OR SUSE Linux Enterprise Server 15 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 is installed AND trousers is affected Definition Synopsis Release Information SUSE OpenStack Cloud 8 is installed OR SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libtspi1 is affected OR libtspi1-32bit is affected OR trousers is affected Definition Synopsis Release Information SUSE OpenStack Cloud 9 is installed OR SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information libtspi1 is affected OR libtspi1-32bit is affected OR trousers is affected Definition Synopsis openSUSE Leap 15.4 is installed AND Package Information trousers-0.3.15-150400.1.10 is installed AND trousers is signed with openSUSE key Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP4 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP4 is installed OR SUSE Linux Enterprise Server 15 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed OR SUSE Manager Proxy 4.3 is installed OR SUSE Manager Retail Branch Server 4.3 is installed OR SUSE Manager Server 4.3 is installed AND Package Information libtspi1-0.3.15-150400.1.10 is installed OR trousers-0.3.15-150400.1.10 is installed OR trousers-devel-0.3.15-150400.1.10 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP5 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed OR SUSE Linux Enterprise Server 15 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed AND Package Information libtspi1-0.3.15-150400.1.10 is installed OR trousers-0.3.15-150400.1.10 is installed OR trousers-devel-0.3.15-150400.1.10 is installed
BACK