exploitDog

SUSE-SU-2018:0409-1

Опубликовано: 09 фев. 2018

Источник: suse-cvrf

Описание

Security update for libdb-4_5

This update for libdb-4_5 fixes the following issues:

A DB_CONFIG file in the current working directory allowed local users to obtain sensitive information via a symlink attack involving a setgid or setuid application using libdb-4_8. (bsc#1043886)

Список пакетов

SUSE Linux Enterprise Server 11 SP4

db-doc-4.5.20-97.5

db-utils-4.5.20-97.5

db-utils-doc-4.5.20-97.5

libdb-4_5-4.5.20-97.5

libdb-4_5-32bit-4.5.20-97.5

libdb-4_5-x86-4.5.20-97.5

SUSE Linux Enterprise Server for SAP Applications 11 SP4

db-doc-4.5.20-97.5

db-utils-4.5.20-97.5

db-utils-doc-4.5.20-97.5

libdb-4_5-4.5.20-97.5

libdb-4_5-32bit-4.5.20-97.5

libdb-4_5-x86-4.5.20-97.5

SUSE Linux Enterprise Software Development Kit 11 SP4

libdb-4_5-devel-4.5.20-97.5

libdb_java-4_5-4.5.20-97.7

SUSE Studio Onsite 1.3

libdb-4_5-devel-4.5.20-97.5

Ссылки

https://www.suse.com/support/update/announcement/2018/suse-su-20180409-1/
Link for SUSE-SU-2018:0409-1
https://lists.suse.com/pipermail/sle-security-updates/2018-February/003718.html
E-Mail link for SUSE-SU-2018:0409-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1043886
SUSE Bug 1043886