Oval Definition:
oval:org.opensuse.security:def:65093
Revision Date
:
2020-12-01
Version
:
1
Title
:
Security update for sudo (Important)
Description
:
This update for sudo fixes the following issues:
Security issue fixed:
- CVE-2019-18634: Fixed a buffer overflow in the passphrase prompt that could occur when pwfeedback was enabled in /etc/sudoers (bsc#1162202).
Non-security issue fixed:
- Fixed an issue where sudo -l would ask for a password even though `listpw` was set to `never` (bsc#1162675).
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1130840
1149955
1153238
1162202
1162675
1164275
1167013
1167014
1173979
1178741
CVE-2019-16056
CVE-2019-16935
CVE-2019-18634
CVE-2019-9947
CVE-2020-10592
CVE-2020-10593
CVE-2020-15572
SUSE-SU-2019:2743-1
SUSE-SU-2020:0408-1
Platform(s)
:
openSUSE Leap 15.2
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
Product(s)
:
Definition Synopsis
openSUSE Leap 15.2 is installed
AND
tor-0.3.5.12-25 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
AND
Package Information
sudo-1.8.22-4.9 is installed
OR
sudo-devel-1.8.22-4.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
AND
Package Information
python-2.7.14-7.24 is installed
OR
python-tk-2.7.14-7.24 is installed
BACK