Описание
ELSA-2015-1483: libuser security update (IMPORTANT)
[0.60-7]
- Update CVE-2015-3246 patch based on review comments Resolves: #1235519
[0.60-6]
- Fix CVE-2015-3246 Resolves: #1235519
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
libuser
0.60-7.el7_1
libuser-devel
0.60-7.el7_1
libuser-python
0.60-7.el7_1
Oracle Linux x86_64
libuser
0.60-7.el7_1
libuser-devel
0.60-7.el7_1
libuser-python
0.60-7.el7_1
Связанные CVE
Связанные уязвимости
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which allows local users to cause a denial of service (inconsistent file state) by causing an error during the modification. NOTE: this issue can be combined with CVE-2015-3245 to gain privileges.
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which allows local users to cause a denial of service (inconsistent file state) by causing an error during the modification. NOTE: this issue can be combined with CVE-2015-3245 to gain privileges.
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhelper program in the usermode package, directly modifies /etc/passwd, which allows local users to cause a denial of service (inconsistent file state) by causing an error during the modification. NOTE: this issue can be combined with CVE-2015-3245 to gain privileges.
libuser before 0.56.13-8 and 0.60 before 0.60-7, as used in the userhe ...