Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2019:13976-1

Опубликовано: 12 мар. 2019
Источник: suse-cvrf

Описание

Security update for supportutils

This update for supportutils fixes the following issues:

Security vulnerabilities fixed:

  • CVE-2018-19636: Local root exploit via inclusion of attacker controlled shell script (bsc#1117751)
  • CVE-2018-19640: Users can kill arbitrary processes (bsc#1118463)
  • CVE-2018-19638: User can overwrite arbitrary log files in support tar (bsc#1118460)
  • CVE-2018-19639: Code execution if run with -v (bsc#1118462)

Список пакетов

SUSE Linux Enterprise Point of Sale 11 SP3
supportutils-1.20-122.9.1
SUSE Linux Enterprise Server 11 SP4
supportutils-1.20-122.9.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4
supportutils-1.20-122.9.1

Ссылки

Описание

Supportutils, before version 3.1-5.7.1, when run with command line argument -A searched the file system for a ndspath binary. If an attacker provides one at an arbitrary location it is executed with root privileges

Затронутые продукты
SUSE Linux Enterprise Point of Sale 11 SP3:supportutils-1.20-122.9.1
SUSE Linux Enterprise Server 11 SP4:supportutils-1.20-122.9.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4:supportutils-1.20-122.9.1
Ссылки

Описание

In supportutils, before version 3.1-5.7.1 and if pacemaker is installed on the system, an unprivileged user could have overwritten arbitrary files in the directory that is used by supportutils to collect the log files.

Затронутые продукты
SUSE Linux Enterprise Point of Sale 11 SP3:supportutils-1.20-122.9.1
SUSE Linux Enterprise Server 11 SP4:supportutils-1.20-122.9.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4:supportutils-1.20-122.9.1
Ссылки

Описание

If supportutils before version 3.1-5.7.1 is run with -v to perform rpm verification and the attacker manages to manipulate the rpm listing (e.g. with CVE-2018-19638) he can execute arbitrary commands as root.

Затронутые продукты
SUSE Linux Enterprise Point of Sale 11 SP3:supportutils-1.20-122.9.1
SUSE Linux Enterprise Server 11 SP4:supportutils-1.20-122.9.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4:supportutils-1.20-122.9.1
Ссылки

Описание

If the attacker manages to create files in the directory used to collect log files in supportutils before version 3.1-5.7.1 (e.g. with CVE-2018-19638) he can kill arbitrary processes on the local machine.

Затронутые продукты
SUSE Linux Enterprise Point of Sale 11 SP3:supportutils-1.20-122.9.1
SUSE Linux Enterprise Server 11 SP4:supportutils-1.20-122.9.1
SUSE Linux Enterprise Server for SAP Applications 11 SP4:supportutils-1.20-122.9.1
Ссылки