Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2017:0340-1

Опубликовано: 31 янв. 2017
Источник: suse-cvrf

Описание

Security update for policycoreutils

This update for policycoreutils fixes the following issues:

  • CVE-2016-7545: nonpriv session can escape to parent [bsc#1000998]

Список пакетов

SUSE Linux Enterprise Server 12 SP1
policycoreutils-2.3-3.3.1
policycoreutils-python-2.3-3.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP1
policycoreutils-2.3-3.3.1
policycoreutils-python-2.3-3.3.1

Ссылки

Описание

SELinux policycoreutils allows local users to execute arbitrary commands outside of the sandbox via a crafted TIOCSTI ioctl call.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP1:policycoreutils-2.3-3.3.1
SUSE Linux Enterprise Server 12 SP1:policycoreutils-python-2.3-3.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP1:policycoreutils-2.3-3.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP1:policycoreutils-python-2.3-3.3.1
Ссылки