Описание
ELSA-2021-1627: trousers security, bug fix, and enhancement update (MODERATE)
[0.3.15-1]
- Rebase to 0.3.15
- Fix CVE-2020-24330 CVE-2020-24331 CVE-2020-24332 resolves: rhbz#1725782 rhbz#1877517 rhbz#1882402 rhbz#1882414
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
trousers
0.3.15-1.el8
trousers-devel
0.3.15-1.el8
trousers-lib
0.3.15-1.el8
Oracle Linux x86_64
trousers
0.3.15-1.el8
trousers-devel
0.3.15-1.el8
trousers-lib
0.3.15-1.el8
Связанные CVE
Связанные уязвимости
An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges, the creation of the system.data file is prone to symlink attacks. The tss user can be used to create or corrupt existing files, which could possibly lead to a DoS attack.
An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges, the creation of the system.data file is prone to symlink attacks. The tss user can be used to create or corrupt existing files, which could possibly lead to a DoS attack.
An issue was discovered in TrouSerS through 0.3.14. If the tcsd daemon is started with root privileges, the creation of the system.data file is prone to symlink attacks. The tss user can be used to create or corrupt existing files, which could possibly lead to a DoS attack.
