SUSE-SU-2019:2018-1

Опубликовано: 30 июл. 2019

Источник: suse-cvrf

Описание

Security update for polkit

This update for polkit fixes the following issues:

Security issue fixed:

CVE-2019-6133: Fixed improper caching of auth decisions, which could bypass uid checking in the interactive backend (bsc#1121826).

Список пакетов

Image SLES15-Azure-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-EC2-HVM-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-GCE-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-OCI-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SAP-Azure

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SAP-Azure-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SAP-Azure-LI-BYOS-Production

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SAP-Azure-VLI-BYOS-Production

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SAP-EC2-HVM

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SAP-EC2-HVM-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SAP-GCE

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SAP-GCE-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SAP-OCI-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-Azure-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-Azure-HPC-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-CAP-Deployment-BYOS-EC2-HVM

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-CAP-Deployment-BYOS-GCE

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-EC2-HPC-HVM-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-EC2-HVM-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-GCE-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-Manager-4-0-Azure-BYOS-Proxy

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-Manager-4-0-Azure-BYOS-Server

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Proxy

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Server

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-Manager-4-0-GCE-BYOS-Proxy

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-Manager-4-0-GCE-BYOS-Server

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-OCI-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-SAP-Azure

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-SAP-Azure-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-SAP-EC2-HVM

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-SAP-EC2-HVM-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-SAP-GCE

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-SAP-GCE-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-SAP-OCI-BYOS

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-SAPCAL-Azure

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-SAPCAL-EC2-HVM

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

Image SLES15-SP1-SAPCAL-GCE

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

SUSE Linux Enterprise Module for Basesystem 15

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

polkit-devel-0.114-3.9.1

typelib-1_0-Polkit-1_0-0.114-3.9.1

SUSE Linux Enterprise Module for Basesystem 15 SP1

libpolkit0-0.114-3.9.1

polkit-0.114-3.9.1

polkit-devel-0.114-3.9.1

typelib-1_0-Polkit-1_0-0.114-3.9.1

Ссылки

https://www.suse.com/support/update/announcement/2019/suse-su-20192018-1/
Link for SUSE-SU-2019:2018-1
https://lists.suse.com/pipermail/sle-security-updates/2019-July/005759.html
E-Mail link for SUSE-SU-2019:2018-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1121826
SUSE Bug 1121826
https://www.suse.com/security/cve/CVE-2019-6133/
SUSE CVE CVE-2019-6133 page

Описание

In PolicyKit (aka polkit) 0.115, the "start time" protection mechanism can be bypassed because fork() is not atomic, and therefore authorization decisions are improperly cached. This is related to lack of uid checking in polkitbackend/polkitbackendinteractiveauthority.c.

Затронутые продукты

Image SLES15-Azure-BYOS:libpolkit0-0.114-3.9.1

Image SLES15-Azure-BYOS:polkit-0.114-3.9.1

Image SLES15-EC2-HVM-BYOS:libpolkit0-0.114-3.9.1

Image SLES15-EC2-HVM-BYOS:polkit-0.114-3.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-6133.html
CVE-2019-6133
https://bugzilla.suse.com/1070943
SUSE Bug 1070943
https://bugzilla.suse.com/1121826
SUSE Bug 1121826
https://bugzilla.suse.com/1121872
SUSE Bug 1121872

SUSE-SU-2019:2018-1

Описание

Список пакетов

Image SLES15-Azure-BYOS

Image SLES15-EC2-HVM-BYOS

Image SLES15-GCE-BYOS

Image SLES15-OCI-BYOS

Image SLES15-SAP-Azure

Image SLES15-SAP-Azure-BYOS

Image SLES15-SAP-Azure-LI-BYOS-Production

Image SLES15-SAP-Azure-VLI-BYOS-Production

Image SLES15-SAP-EC2-HVM

Image SLES15-SAP-EC2-HVM-BYOS

Image SLES15-SAP-GCE

Image SLES15-SAP-GCE-BYOS

Image SLES15-SAP-OCI-BYOS

Image SLES15-SP1-Azure-BYOS

Image SLES15-SP1-Azure-HPC-BYOS

Image SLES15-SP1-CAP-Deployment-BYOS-EC2-HVM

Image SLES15-SP1-CAP-Deployment-BYOS-GCE

Image SLES15-SP1-EC2-HPC-HVM-BYOS

Image SLES15-SP1-EC2-HVM-BYOS

Image SLES15-SP1-GCE-BYOS

Image SLES15-SP1-Manager-4-0-Azure-BYOS-Proxy

Image SLES15-SP1-Manager-4-0-Azure-BYOS-Server

Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Proxy

Image SLES15-SP1-Manager-4-0-EC2-HVM-BYOS-Server

Image SLES15-SP1-Manager-4-0-GCE-BYOS-Proxy

Image SLES15-SP1-Manager-4-0-GCE-BYOS-Server

Image SLES15-SP1-OCI-BYOS

Image SLES15-SP1-SAP-Azure

Image SLES15-SP1-SAP-Azure-BYOS

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP1-SAP-EC2-HVM

Image SLES15-SP1-SAP-EC2-HVM-BYOS

Image SLES15-SP1-SAP-GCE

Image SLES15-SP1-SAP-GCE-BYOS

Image SLES15-SP1-SAP-OCI-BYOS

Image SLES15-SP1-SAPCAL-Azure

Image SLES15-SP1-SAPCAL-EC2-HVM

Image SLES15-SP1-SAPCAL-GCE

SUSE Linux Enterprise Module for Basesystem 15

SUSE Linux Enterprise Module for Basesystem 15 SP1

Ссылки

Уязвимость: CVE-2019-6133

Описание

Затронутые продукты

Ссылки