SUSE-SU-2020:1933-1

Опубликовано: 15 июл. 2020

Источник: suse-cvrf

Описание

Security update for xrdp

This update for xrdp fixes the following issues:

Security fixes (bsc#1173580, CVE-2020-4044):
- Add patches:
  - xrdp-cve-2020-4044-fix-0.patch
  - xrdp-cve-2020-4044-fix-1.patch
- Rebase SLE patch:
  - xrdp-fate318398-change-expired-password.patch

Список пакетов

Image SLES15-SAP-Azure-LI-BYOS-Production

xrdp-0.9.6-4.8.1

Image SLES15-SAP-Azure-VLI-BYOS-Production

xrdp-0.9.6-4.8.1

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production

xrdp-0.9.6-4.8.1

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production

xrdp-0.9.6-4.8.1

Image SLES15-SP1-SAPCAL-Azure

xrdp-0.9.6-4.8.1

Image SLES15-SP1-SAPCAL-EC2-HVM

xrdp-0.9.6-4.8.1

Image SLES15-SP1-SAPCAL-GCE

xrdp-0.9.6-4.8.1

SUSE Linux Enterprise High Performance Computing 15-ESPOS

libpainter0-0.9.6-4.8.1

librfxencode0-0.9.6-4.8.1

xrdp-0.9.6-4.8.1

xrdp-devel-0.9.6-4.8.1

SUSE Linux Enterprise High Performance Computing 15-LTSS

libpainter0-0.9.6-4.8.1

librfxencode0-0.9.6-4.8.1

xrdp-0.9.6-4.8.1

xrdp-devel-0.9.6-4.8.1

SUSE Linux Enterprise Module for Basesystem 15 SP1

libpainter0-0.9.6-4.8.1

librfxencode0-0.9.6-4.8.1

xrdp-0.9.6-4.8.1

xrdp-devel-0.9.6-4.8.1

SUSE Linux Enterprise Server 15-LTSS

libpainter0-0.9.6-4.8.1

librfxencode0-0.9.6-4.8.1

xrdp-0.9.6-4.8.1

xrdp-devel-0.9.6-4.8.1

SUSE Linux Enterprise Server for SAP Applications 15

libpainter0-0.9.6-4.8.1

librfxencode0-0.9.6-4.8.1

xrdp-0.9.6-4.8.1

xrdp-devel-0.9.6-4.8.1

Ссылки

https://www.suse.com/support/update/announcement/2020/suse-su-20201933-1/
Link for SUSE-SU-2020:1933-1
https://lists.suse.com/pipermail/sle-updates/2020-July/015437.html
E-Mail link for SUSE-SU-2020:1933-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1173580
SUSE Bug 1173580
https://www.suse.com/security/cve/CVE-2020-4044/
SUSE CVE CVE-2020-4044 page

Описание

The xrdp-sesman service before version 0.9.13.1 can be crashed by connecting over port 3350 and supplying a malicious payload. Once the xrdp-sesman process is dead, an unprivileged attacker on the server could then proceed to start their own imposter sesman service listening on port 3350. This will allow them to capture any user credentials that are submitted to XRDP and approve or reject arbitrary login credentials. For xorgxrdp sessions in particular, this allows an unauthorized user to hijack an existing session. This is a buffer overflow attack, so there may be a risk of arbitrary code execution as well.

Затронутые продукты

Image SLES15-SAP-Azure-LI-BYOS-Production:xrdp-0.9.6-4.8.1

Image SLES15-SAP-Azure-VLI-BYOS-Production:xrdp-0.9.6-4.8.1

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:xrdp-0.9.6-4.8.1

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production:xrdp-0.9.6-4.8.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-4044.html
CVE-2020-4044
https://bugzilla.suse.com/1173580
SUSE Bug 1173580

SUSE-SU-2020:1933-1

Описание

Список пакетов

Image SLES15-SAP-Azure-LI-BYOS-Production

Image SLES15-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP1-SAP-Azure-LI-BYOS-Production

Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP1-SAPCAL-Azure

Image SLES15-SP1-SAPCAL-EC2-HVM

Image SLES15-SP1-SAPCAL-GCE

SUSE Linux Enterprise High Performance Computing 15-ESPOS

SUSE Linux Enterprise High Performance Computing 15-LTSS

SUSE Linux Enterprise Module for Basesystem 15 SP1

SUSE Linux Enterprise Server 15-LTSS

SUSE Linux Enterprise Server for SAP Applications 15

Ссылки

Уязвимость: CVE-2020-4044

Описание

Затронутые продукты

Ссылки