Oval Definition:
oval:org.opensuse.security:def:64935
Revision Date
:
2020-12-01
Version
:
1
Title
:
Security update for trousers (Moderate)
Description
:
This update for trousers fixes the following issues:
- CVE-2019-18898: Fixed a local symlink attack where a rogue tss user could have gain ownership of arbitrary files in the system during installation/update of the trousers package (bsc#1157651).
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1157651
1170557
1174457
1174910
1174913
1176437
CVE-2019-15043
CVE-2019-18898
CVE-2020-12245
CVE-2020-13379
CVE-2020-14361
CVE-2020-14362
CVE-2020-15917
CVE-2020-6097
openSUSE-SU-2020:0892-1
openSUSE-SU-2020:1139-1
openSUSE-SU-2020:1736-1
SUSE-SU-2019:3349-1
SUSE-SU-2020:2481-1
Platform(s)
:
openSUSE Leap 15.2
SUSE Linux Enterprise Module for Basesystem 15 SP1
Product(s)
:
Definition Synopsis
openSUSE Leap 15.2 is installed
AND
Package Information
claws-mail-3.17.6-lp152.3.3 is installed
OR
claws-mail-devel-3.17.6-lp152.3.3 is installed
OR
claws-mail-lang-3.17.6-lp152.3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
AND
Package Information
libtspi1-0.3.14-6.3 is installed
OR
trousers-0.3.14-6.3 is installed
OR
trousers-devel-0.3.14-6.3 is installed
BACK