Описание
ELSA-2015-1482: libuser security update (IMPORTANT)
[0.56.13-8]
- Update CVE-2015-3246 patch based on review comments Resolves: #1235518
[0.56.13-7]
- Dont use 512-bit RSA private keys in tests Related: #1235518
- Fix testsuite failures if more than one architecture is building concurrently Related: #1235518
[0.56.13-6]
- Fix CVE-2015-3246 Resolves: #1235518
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
libuser
0.56.13-8.el6_7
libuser-devel
0.56.13-8.el6_7
libuser-python
0.56.13-8.el6_7
Oracle Linux i686
libuser
0.56.13-8.el6_7
libuser-devel
0.56.13-8.el6_7
libuser-python
0.56.13-8.el6_7
Oracle Linux sparc64
libuser
0.56.13-8.el6_7
libuser-devel
0.56.13-8.el6_7
libuser-python
0.56.13-8.el6_7
Связанные CVE
Связанные уязвимости
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which allows local users to cause a denial of service (inconsistent file state) by causing an error during the modification. NOTE: this issue can be combined with CVE-2015-3245 to gain privileges.
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which allows local users to cause a denial of service (inconsistent file state) by causing an error during the modification. NOTE: this issue can be combined with CVE-2015-3245 to gain privileges.
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which allows local users to cause a denial of service (inconsistent file state) by causing an error during the modification. NOTE: this issue can be combined with CVE-2015-3245 to gain privileges.
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhe ...