Описание
ELSA-2024-3823: rpm-ostree security update (MODERATE)
[2024.3-3]
- Backport https://github.com/coreos/rpm-ostree/security/advisories/GHSA-2m76-cwhg-7wv6 Resolves: #RHEL-31852
[2024.3-2]
- Backport https://github.com/coreos/rpm-ostree/security/advisories/GHSA-2m76-cwhg-7wv6 Resolves: #RHEL-31852
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
rpm-ostree
2024.3-3.el9_4
rpm-ostree-libs
2024.3-3.el9_4
Oracle Linux x86_64
rpm-ostree
2024.3-3.el9_4
rpm-ostree-libs
2024.3-3.el9_4
Связанные CVE
Связанные уязвимости
A security vulnerability has been discovered within rpm-ostree, pertaining to the /etc/shadow file in default builds having the world-readable bit enabled. This issue arises from the default permissions being set at a higher level than recommended, potentially exposing sensitive authentication data to unauthorized access.
A security vulnerability has been discovered within rpm-ostree, pertaining to the /etc/shadow file in default builds having the world-readable bit enabled. This issue arises from the default permissions being set at a higher level than recommended, potentially exposing sensitive authentication data to unauthorized access.
ELBA-2025-4872: rpm-ostree bug fix and enhancement update (MODERATE)
Уязвимость пакета rpm-ostree операционных систем Red Hat Enterprise Linux и Fedora, позволяющая нарушителю получить несанкционированный доступ к аутентификационным данным