exploitDog

SUSE-SU-2019:1214-1

Опубликовано: 10 мая 2019

Источник: suse-cvrf

Описание

Security update for jakarta-commons-fileupload

This update for jakarta-commons-fileupload fixes the following issue:

Security issue fixed:

CVE-2016-1000031: Fixed remote execution (bsc#1128963, bsc#1128829).

Список пакетов

SUSE Enterprise Storage 4

jakarta-commons-fileupload-1.1.1-122.3.1

jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

SUSE Linux Enterprise Server 12 SP1-LTSS

jakarta-commons-fileupload-1.1.1-122.3.1

jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

SUSE Linux Enterprise Server 12 SP2-BCL

jakarta-commons-fileupload-1.1.1-122.3.1

jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

SUSE Linux Enterprise Server 12 SP2-LTSS

jakarta-commons-fileupload-1.1.1-122.3.1

jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

SUSE Linux Enterprise Server 12 SP3

jakarta-commons-fileupload-1.1.1-122.3.1

jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

SUSE Linux Enterprise Server 12 SP4

jakarta-commons-fileupload-1.1.1-122.3.1

jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

SUSE Linux Enterprise Server 12-LTSS

jakarta-commons-fileupload-1.1.1-122.3.1

jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP1

jakarta-commons-fileupload-1.1.1-122.3.1

jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP2

jakarta-commons-fileupload-1.1.1-122.3.1

jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP3

jakarta-commons-fileupload-1.1.1-122.3.1

jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

SUSE Linux Enterprise Server for SAP Applications 12 SP4

jakarta-commons-fileupload-1.1.1-122.3.1

jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

SUSE OpenStack Cloud 7

jakarta-commons-fileupload-1.1.1-122.3.1

jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

Ссылки

https://www.suse.com/support/update/announcement/2019/suse-su-20191214-1/
Link for SUSE-SU-2019:1214-1
https://lists.suse.com/pipermail/sle-security-updates/2019-May/005433.html
E-Mail link for SUSE-SU-2019:1214-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1128829
SUSE Bug 1128829
https://bugzilla.suse.com/1128963
SUSE Bug 1128963
https://www.suse.com/security/cve/CVE-2016-1000031/
SUSE CVE CVE-2016-1000031 page

Описание

Apache Commons FileUpload before 1.3.3 DiskFileItem File Manipulation Remote Code Execution

Затронутые продукты

SUSE Enterprise Storage 4:jakarta-commons-fileupload-1.1.1-122.3.1

SUSE Enterprise Storage 4:jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

SUSE Linux Enterprise Server 12 SP1-LTSS:jakarta-commons-fileupload-1.1.1-122.3.1

SUSE Linux Enterprise Server 12 SP1-LTSS:jakarta-commons-fileupload-javadoc-1.1.1-122.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2016-1000031.html
CVE-2016-1000031
https://bugzilla.suse.com/1128963
SUSE Bug 1128963