Vulnerability CVE-2019-18898

Vulnerability Name:

CVE-2019-18898 (CCN-175502)

Assigned:

2019-11-25

Published:

2019-11-25

Updated:

2022-11-10

Summary:

UNIX Symbolic Link (Symlink) Following vulnerability in the trousers package of SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allowed local attackers escalate privileges from user tss to root. This issue affects: SUSE Linux Enterprise Server 15 SP1 trousers versions prior to 0.3.14-6.3.1. openSUSE Factory trousers versions prior to 0.3.14-7.1.

CVSS v3 Severity:

7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

7.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)
6.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-59

Vulnerability Consequences:

Gain Privileges

References:

Source: MITRE
Type: CNA
CVE-2019-18898

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2020:0744

Source: CCN
Type: Bugzilla Bug 1157651
(CVE-2019-18898) VUL-0: CVE-2019-18898: trousers: Local privilege escalation from tss to root

Source: CONFIRM
Type: Exploit, Issue Tracking, Vendor Advisory
https://bugzilla.suse.com/show_bug.cgi?id=1157651

Source: XF
Type: UNKNOWN
opensuse-cve201918898-priv-esc(175502)

Source: CCN
Type: openSUSE Web site
trousers package

Vulnerable Configuration:

Configuration 1:

cpe:/a:suse:trousers:*:*:*:*:*:*:*:* (Version < 0.3.14-6.3.1)

AND

cpe:/o:suse:suse_linux_enterprise_server:15:sp1:*:*:*:*:*:*

Configuration 2:

cpe:/a:suse:trousers:*:*:*:*:*:*:*:* (Version < 0.3.14-7.1)

AND

cpe:/o:suse:opensuse_factory:-:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:opensuse:leap:15.1:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:opensuse:factory:-:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201918898	V	CVE-2019-18898	2023-06-22
oval:org.opensuse.security:def:7684	P	libtspi1-0.3.15-150400.1.10 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:51999	P	Security update for tiff (Important)	2023-02-10
oval:org.opensuse.security:def:806	P	Security update for LibVNCServer (Moderate)	2022-10-06
oval:org.opensuse.security:def:3628	P	Security update for fwupdate (Important)	2022-07-08
oval:org.opensuse.security:def:3616	P	libjpeg62-32bit-62.2.0-31.14.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3092	P	gstreamer-1.8.3-9.5 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:2891	P	conntrack-tools-1.4.5-1.46 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2938	P	gptfdisk-1.0.8-150400.1.7 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2887	P	chrony-4.1-150400.19.4 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2978	P	libXfixes-devel-6.0.0-150400.1.4 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2923	P	fribidi-1.0.10-150400.1.7 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94722	P	libtspi1-0.3.15-150400.1.10 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2897	P	cron-4.2-150400.82.21 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2962	P	keylime-agent-6.3.0-150400.2.5 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2976	P	libXdmcp-devel-1.1.2-1.23 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2929	P	gdk-pixbuf-loader-rsvg-2.52.6-150400.1.7 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2909	P	dnsmasq-2.86-150400.14.3 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2968	P	libFS-devel-1.0.7-1.22 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:213	P	libtspi1-0.3.14-6.6.2 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:373	P	trousers-0.3.15-150400.1.10 on GA media (Moderate)	2022-06-10
oval:org.opensuse.security:def:112880	P	libtspi1-0.3.15-1.7 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:64825	P	Security update for python3 (Moderate)	2021-12-16
oval:org.opensuse.security:def:1142	P	Security update for gmp (Moderate)	2021-12-06
oval:org.opensuse.security:def:1647	P	Security update for mariadb (Moderate)	2021-12-01
oval:org.opensuse.security:def:68772	P	Security update for samba (Important)	2021-11-15
oval:org.opensuse.security:def:68282	P	Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP2) (Important)	2021-10-14
oval:org.opensuse.security:def:64553	P	Security update for cpio (Important)	2021-08-16
oval:org.opensuse.security:def:48179	P	libpulse-mainloop-glib0-32bit-5.0-4.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48164	P	libopus0-1.1-3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48300	P	ruby-2.1-1.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48165	P	libospf0-1.1.1-17.7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:63480	P	libOSMesa8-32bit-20.2.4-57.13 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63342	P	libmariadbd-devel-10.5.8-1.5 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2285	P	sca-patterns-sle12-1.0.2-1.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:62231	P	libtspi1-0.3.14-6.6.2 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71972	P	libtspi1-0.3.14-6.6.2 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:69898	P	Security update for MozillaFirefox (Important)	2021-07-27
oval:org.opensuse.security:def:64529	P	Security update for postgresql12 (Moderate)	2021-06-17
oval:org.opensuse.security:def:64713	P	Security update for the Linux Kernel (Important)	2021-06-15
oval:org.opensuse.security:def:48493	P	libfreetype6-2.6.3-7.8.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48865	P	libplist++3-1.12-19.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48625	P	squidGuard-1.4-23.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:62861	P	libtool-32bit-2.4.6-1.406 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48717	P	finch-2.10.9-8.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:68182	P	Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP2) (Important)	2021-05-25
oval:org.opensuse.security:def:69793	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:64655	P	Security update for python-cryptography (Important)	2021-02-25
oval:org.opensuse.security:def:64273	P	Security update for openssl-1_1 (Important)	2020-12-09
oval:org.opensuse.security:def:64445	P	Security update for openssh (Moderate)	2020-12-09
oval:org.opensuse.security:def:64446	P	Security update for python-pip, python-scripttest (Moderate)	2020-12-09
oval:org.opensuse.security:def:93862	P	libtspi1-0.3.14-6.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71636	P	libtspi1-0.3.14-6.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62902	P	guile-2.0.14-5.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63108	P	aws-cli-1.16.61-6.22 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63140	P	apache2-mod_apparmor-2.12-5.9 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62661	P	libavcodec57-3.4.2-9.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62660	P	libass-devel-0.14.0-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71635	P	libtiff-devel-4.0.9-5.27.5 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62684	P	libmp3lame-devel-3.100-1.33 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107241	P	libtspi1-0.3.14-6.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63401	P	nodejs8-8.15.1-3.14.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:100575	P	libtspi1-0.3.14-6.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62905	P	libgit2-26-0.26.8-3.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71522	P	lftp-4.8.4-3.9 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62898	P	dpkg-1.19.0.4-2.30 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72228	P	colord-color-profiles-1.4.2-1.37 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:116799	P	libtspi1-0.3.14-6.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62930	P	FastCGI-2.4.0-2.23 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61895	P	libtspi1-0.3.14-6.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72112	P	accountsservice-0.6.45-4.28 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63604	P	MozillaThunderbird-68.8.0-3.80.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49290	P	Security update for python-setuptools (Important)	2020-12-02
oval:org.opensuse.security:def:49550	P	libgypsy-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50394	P	Security update for systemd (Important)	2020-12-01
oval:org.opensuse.security:def:74469	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:49321	P	qemu-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52061	P	Security update for trousers (Moderate)	2020-12-01
oval:org.opensuse.security:def:50554	P	Security update for netpbm (Moderate)	2020-12-01
oval:org.opensuse.security:def:74900	P	Security update for trousers (Moderate)	2020-12-01
oval:org.opensuse.security:def:49163	P	libcroco on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64848	P	Security update for libgcrypt (Moderate)	2020-12-01
oval:org.opensuse.security:def:49405	P	gdk-pixbuf-query-loaders-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64309	P	libXt-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73115	P	krb5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49999	P	dpdk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50619	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:64167	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:49193	P	libmicrohttpd12 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:74767	P	Security update for tomcat (Important)	2020-12-01
oval:org.opensuse.security:def:63751	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:50650	P	Security update for wavpack (Low)	2020-12-01
oval:org.opensuse.security:def:64935	P	Security update for trousers (Moderate)	2020-12-01
oval:org.opensuse.security:def:49755	P	perl-DNS-LDNS on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64375	P	libpython2_7-1_0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50484	P	Security update for sysstat (Moderate)	2020-12-01
oval:org.opensuse.security:def:65438	P	Security update for nginx (Important)	2020-12-01
oval:org.opensuse.security:def:63706	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:49392	P	bluez on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:68875	P	Security update for trousers (Moderate)	2020-12-01
oval:org.opensuse.security:def:64417	P	minicom on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49247	P	libtspi1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49423	P	libXinerama1-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50668	P	Security update for python-numpy (Moderate)	2020-12-01
oval:org.opensuse.security:def:50156	P	libmwaw-0_3-3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:65528	P	Security update for trousers (Moderate)	2020-12-01
oval:org.opensuse.security:def:66450	P	libXvnc1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49079	P	dbus-1-glib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49404	P	gd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:63980	P	Security update for java-1_8_0-openjdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:50723	P	Security update for libgcrypt (Moderate)	2020-12-01
oval:org.opensuse.security:def:49901	P	python3-keystoneclient on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50722	P	Security update for trousers (Moderate)	2020-12-01
oval:org.opensuse.security:def:49225	P	libqpdf26 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:74595	P	Security update for trousers (Moderate)	2020-12-01
oval:org.opensuse.security:def:64033	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:66542	P	libtspi1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73233	P	libtspi1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:110562	P	Security update for trousers (Moderate)	2020-05-29
oval:org.opensuse.security:def:110219	P	Security update for trousers (Moderate)	2020-01-13
oval:org.opensuse.security:def:104549	P	Security update for trousers (Moderate)	2019-12-19
oval:org.opensuse.security:def:97859	P	Security update for trousers (Moderate)	2019-12-19
oval:org.opensuse.security:def:90261	P	Security update for trousers (Moderate)	2019-12-19
oval:org.opensuse.security:def:75255	P	Security update for trousers (Moderate)	2019-12-19
oval:org.opensuse.security:def:90894	P	Security update for trousers (Moderate)	2019-12-19
oval:org.opensuse.security:def:103916	P	Security update for trousers (Moderate)	2019-12-19

BACK