exploitDog

SUSE-SU-2018:0510-1

Опубликовано: 21 фев. 2018

Источник: suse-cvrf

Описание

Security update for libdb-4_8

This update for libdb-4_8 fixes the following issues:

A DB_CONFIG file in the current working directory allowed local users to obtain sensitive information via a symlink attack involving a setgid or setuid application using libdb-4_8. (bsc#1043886)

Список пакетов

SUSE Linux Enterprise Desktop 12 SP2

db48-utils-4.8.30-29.6

libdb-4_8-4.8.30-29.6

libdb-4_8-32bit-4.8.30-29.6

SUSE Linux Enterprise Desktop 12 SP3

db48-utils-4.8.30-29.6

libdb-4_8-4.8.30-29.6

libdb-4_8-32bit-4.8.30-29.6

SUSE Linux Enterprise Server 12 SP2

db48-utils-4.8.30-29.6

libdb-4_8-4.8.30-29.6

libdb-4_8-32bit-4.8.30-29.6

SUSE Linux Enterprise Server 12 SP3

db48-utils-4.8.30-29.6

libdb-4_8-4.8.30-29.6

libdb-4_8-32bit-4.8.30-29.6

SUSE Linux Enterprise Server for Raspberry Pi 12 SP2

db48-utils-4.8.30-29.6

libdb-4_8-4.8.30-29.6

SUSE Linux Enterprise Server for SAP Applications 12 SP2

db48-utils-4.8.30-29.6

libdb-4_8-4.8.30-29.6

libdb-4_8-32bit-4.8.30-29.6

SUSE Linux Enterprise Server for SAP Applications 12 SP3

db48-utils-4.8.30-29.6

libdb-4_8-4.8.30-29.6

libdb-4_8-32bit-4.8.30-29.6

SUSE Linux Enterprise Software Development Kit 12 SP2

libdb-4_8-devel-4.8.30-29.6

SUSE Linux Enterprise Software Development Kit 12 SP3

libdb-4_8-devel-4.8.30-29.6

Ссылки

https://www.suse.com/support/update/announcement/2018/suse-su-20180510-1/
Link for SUSE-SU-2018:0510-1
https://lists.suse.com/pipermail/sle-security-updates/2018-February/003748.html
E-Mail link for SUSE-SU-2018:0510-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1043886
SUSE Bug 1043886