Описание
Security update for postgresql-init
This update for postgresql-init fixes the following issues:
- CVE-2017-14798: A race condition in the init script could be used by attackers able to access the postgresql account to escalate their privileges to root (bsc#1062722)
Список пакетов
SUSE Linux Enterprise Server 11 SP4
postgresql-init-9.4-0.5.3.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
postgresql-init-9.4-0.5.3.1
Ссылки
- Link for SUSE-SU-2017:3107-1
- E-Mail link for SUSE-SU-2017:3107-1
- SUSE Security Ratings
- SUSE Bug 1062722
- SUSE CVE CVE-2017-14798 page
Описание
A race condition in the postgresql init script could be used by attackers able to access the postgresql account to escalate their privileges to root.
Затронутые продукты
SUSE Linux Enterprise Server 11 SP4:postgresql-init-9.4-0.5.3.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4:postgresql-init-9.4-0.5.3.1
Ссылки
- CVE-2017-14798
- SUSE Bug 1062722