Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2020:3909-1

Опубликовано: 22 дек. 2020
Источник: suse-cvrf

Описание

Security update for PackageKit

This update for PackageKit fixes the following issues:

  • CVE-2020-16121: Fixed an information disclosure in InstallFiles, GetFilesLocal and GetDetailsLocal (bsc#1176930).

Список пакетов

SUSE Linux Enterprise Server 12 SP5
PackageKit-1.1.3-24.15.1
PackageKit-backend-zypp-1.1.3-24.15.1
PackageKit-lang-1.1.3-24.15.1
libpackagekit-glib2-18-1.1.3-24.15.1
typelib-1_0-PackageKitGlib-1_0-1.1.3-24.15.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
PackageKit-1.1.3-24.15.1
PackageKit-backend-zypp-1.1.3-24.15.1
PackageKit-lang-1.1.3-24.15.1
libpackagekit-glib2-18-1.1.3-24.15.1
typelib-1_0-PackageKitGlib-1_0-1.1.3-24.15.1
SUSE Linux Enterprise Software Development Kit 12 SP5
PackageKit-devel-1.1.3-24.15.1
libpackagekit-glib2-devel-1.1.3-24.15.1
SUSE Linux Enterprise Workstation Extension 12 SP5
PackageKit-gstreamer-plugin-1.1.3-24.15.1
PackageKit-gtk3-module-1.1.3-24.15.1

Ссылки

Описание

PackageKit provided detailed error messages to unprivileged callers that exposed information about file presence and mimetype of files that the user would be unable to determine on its own.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:PackageKit-1.1.3-24.15.1
SUSE Linux Enterprise Server 12 SP5:PackageKit-backend-zypp-1.1.3-24.15.1
SUSE Linux Enterprise Server 12 SP5:PackageKit-lang-1.1.3-24.15.1
SUSE Linux Enterprise Server 12 SP5:libpackagekit-glib2-18-1.1.3-24.15.1
Ссылки