Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2017:0338-1

Опубликовано: 31 янв. 2017
Источник: suse-cvrf

Описание

Security update for policycoreutils

This update for policycoreutils fixes the following issues:

  • CVE-2016-7545: nonpriv session can escape to parent [bsc#1000998]

Список пакетов

SUSE Linux Enterprise Server 12 SP2
policycoreutils-2.5-6.1
policycoreutils-python-2.5-6.1
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
policycoreutils-2.5-6.1
policycoreutils-python-2.5-6.1
SUSE Linux Enterprise Server for SAP Applications 12 SP2
policycoreutils-2.5-6.1
policycoreutils-python-2.5-6.1

Ссылки

Описание

SELinux policycoreutils allows local users to execute arbitrary commands outside of the sandbox via a crafted TIOCSTI ioctl call.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP2:policycoreutils-2.5-6.1
SUSE Linux Enterprise Server 12 SP2:policycoreutils-python-2.5-6.1
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:policycoreutils-2.5-6.1
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:policycoreutils-python-2.5-6.1
Ссылки