| Revision Date: | 2020-12-01 | Version: | 1 |
| Title: | Security update for permissions (Moderate) |
| Description: |
This update for permissions fixes the following issues:
- CVE-2019-3688: Changed wrong ownership in /usr/sbin/pinger to root:squid which could have allowed a squid user to gain persistence by changing the binary (bsc#1093414). - CVE-2019-3690: Fixed a privilege escalation through untrusted symbolic links (bsc#1150734). - Fixed a regression which caused sagmentation fault (bsc#1157198).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1093414
1150734
1157198
1176262
CVE-2019-20916
CVE-2019-3688
CVE-2019-3690
openSUSE-SU-2019:2672-1
openSUSE-SU-2020:1613-1
|
| Platform(s): | openSUSE Leap 15.1
| Product(s): | |
| Definition Synopsis |
| openSUSE Leap 15.1 is installed AND Package Information
permissions-20181116-lp151.4.9 is installed
OR permissions-zypp-plugin-20181116-lp151.4.9 is installed
|