Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2016:2021-1

Опубликовано: 10 авг. 2016
Источник: suse-cvrf

Описание

Security update for sqlite3

This update for sqlite3 fixes the following issues:

The following security issue was fixed:

  • CVE-2016-6153: Fixed a tempdir selection vulnerability (bsc#987394)

Список пакетов

SUSE Linux Enterprise Server 11 SP4
libsqlite3-0-3.7.6.3-1.4.6.1
libsqlite3-0-32bit-3.7.6.3-1.4.6.1
libsqlite3-0-x86-3.7.6.3-1.4.6.1
sqlite3-3.7.6.3-1.4.6.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
libsqlite3-0-3.7.6.3-1.4.6.1
libsqlite3-0-32bit-3.7.6.3-1.4.6.1
libsqlite3-0-x86-3.7.6.3-1.4.6.1
sqlite3-3.7.6.3-1.4.6.1
SUSE Linux Enterprise Software Development Kit 11 SP4
sqlite3-devel-3.7.6.3-1.4.6.1
SUSE Studio Onsite 1.3
sqlite3-devel-3.7.6.3-1.4.6.1

Ссылки

Описание

os_unix.c in SQLite before 3.13.0 improperly implements the temporary directory search algorithm, which might allow local users to obtain sensitive information, cause a denial of service (application crash), or have unspecified other impact by leveraging use of the current working directory for temporary files.

Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:libsqlite3-0-3.7.6.3-1.4.6.1
SUSE Linux Enterprise Server 11 SP4:libsqlite3-0-32bit-3.7.6.3-1.4.6.1
SUSE Linux Enterprise Server 11 SP4:libsqlite3-0-x86-3.7.6.3-1.4.6.1
SUSE Linux Enterprise Server 11 SP4:sqlite3-3.7.6.3-1.4.6.1
Ссылки