Описание
Security update for tcmu-runner
This update for tcmu-runner fixes the following issues:
- qcow handler opens up an information leak via the CheckConfig D-Bus method (bsc#1049491)
- glfs handler allows local DoS via crafted CheckConfig strings (bsc#1049485)
- UnregisterHandler dbus method in tcmu-runner daemon for non-existing handler causes denial of service (bsc#1049488)
- UnregisterHandler D-Bus method in tcmu-runner daemon for internal handler causes denial of service (bsc#1049489)
- Memory leaks can be triggered in tcmu-runner daemon by calling D-Bus method for (Un)RegisterHandler (bsc#1049490)
Список пакетов
SUSE Linux Enterprise Server 12 SP3
libtcmu1-1.2.0-2.3.1
tcmu-runner-1.2.0-2.3.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3
libtcmu1-1.2.0-2.3.1
tcmu-runner-1.2.0-2.3.1
SUSE Linux Enterprise Software Development Kit 12 SP3
tcmu-runner-devel-1.2.0-2.3.1
Ссылки
- Link for SUSE-SU-2017:2109-1
- E-Mail link for SUSE-SU-2017:2109-1
- SUSE Security Ratings
- SUSE Bug 1049485
- SUSE Bug 1049488
- SUSE Bug 1049489
- SUSE Bug 1049490
- SUSE Bug 1049491