Oval Definition:oval:org.opensuse.security:def:68708
Revision Date:2020-12-01Version:1
Title:Security update for cronie (Low)
Description:

This update for cronie fixes the following issues:

Security issues fixed:

- CVE-2019-9704: Fixed an insufficient check in the return value of calloc which could allow a local user to create Denial of Service by crashing the daemon (bsc#1128937). - CVE-2019-9705: Fixed an implementation vulnerability which could allow a local user to exhaust the memory resulting in Denial of Service (bsc#1128935).

Bug fixes:

- Manual start of cron is possible even when it's already started using systemd (bsc#1133100). - Cron schedules only one job of crontab (bsc#1130746).
Family:unixClass:patch
Status:Reference(s):1082318
1128828
1128935
1128937
1130746
1133100
1142614
CVE-2019-9704
CVE-2019-9705
CVE-2019-9893
SUSE-SU-2019:1389-2
SUSE-SU-2019:2517-1
Platform(s):SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • cronie-1.5.1-6.7 is installed
  • OR cronie-anacron-1.5.1-6.7 is installed
    • BACK