Oval Definition:oval:org.opensuse.security:def:69455
Revision Date:2021-04-30Version:1
Title:Security update for cifs-utils (Important)
Description:



This update for cifs-utils fixes the following security issues:

- CVE-2021-20208: Fixed a potential kerberos auth leak escaping from container. (bsc#1183239) - CVE-2020-14342: Fixed a shell command injection vulnerability in mount.cifs. (bsc#1174477)

This update for cifs-utils fixes the following issues:

- Solve invalid directory mounting. When attempting to change the current working directory into non-existing directories, mount.cifs crashes. (bsc#1152930)

- Fixed a bug where it was no longer possible to mount CIFS filesystem after the last maintenance update. (bsc#1184815)
Family:unixClass:patch
Status:Reference(s):1027519
1137314
1139913
1152497
1152930
1154448
1154456
1154458
1154460
1154461
1154464
1155945
1174477
1183239
1184815
CVE-2018-12207
CVE-2019-10153
CVE-2019-11135
CVE-2019-18420
CVE-2019-18421
CVE-2019-18422
CVE-2019-18423
CVE-2019-18424
CVE-2019-18425
CVE-2020-14342
CVE-2021-20208
SUSE-SU-2019:1819-1
SUSE-SU-2019:2961-1
SUSE-SU-2021:1455-1
Platform(s):SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Server 15-LTSS
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP1 is installed
  • AND Package Information
  • fence-agents-4.4.0+git.1558595666.5f79f9e9-7.5 is installed
  • OR fence-agents-devel-4.4.0+git.1558595666.5f79f9e9-7.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • xen-4.12.1_04-3.6 is installed
  • OR xen-devel-4.12.1_04-3.6 is installed
  • OR xen-tools-4.12.1_04-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • cifs-utils-6.9-3.14.1 is installed
  • OR cifs-utils-devel-6.9-3.14.1 is installed
    • BACK