Описание
Security update for aide
This update for aide fixes the following issues:
- CVE-2021-45417: Fix a bufferoverflow in base64 functions (bsc#1194735)
Список пакетов
Image SLES15-SP4-Hardened-BYOS
aide-0.16-24.1
Image SLES15-SP4-Hardened-BYOS-Azure
aide-0.16-24.1
Image SLES15-SP4-Hardened-BYOS-EC2
aide-0.16-24.1
Image SLES15-SP4-Hardened-BYOS-GCE
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-Azure
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-BYOS
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-BYOS-Azure
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-BYOS-EC2
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-BYOS-GCE
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-EC2
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-GCE
aide-0.16-24.1
Image SLES15-SP5-Hardened-BYOS-Azure
aide-0.16-24.1
Image SLES15-SP5-Hardened-BYOS-EC2
aide-0.16-24.1
Image SLES15-SP5-Hardened-BYOS-GCE
aide-0.16-24.1
Image SLES15-SP5-SAP-Hardened-Azure
aide-0.16-24.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
aide-0.16-24.1
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
aide-0.16-24.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
aide-0.16-24.1
Image SLES15-SP5-SAP-Hardened-EC2
aide-0.16-24.1
Image SLES15-SP5-SAP-Hardened-GCE
aide-0.16-24.1
Image SLES15-SP6-Hardened-BYOS
aide-0.16-24.1
Image SLES15-SP6-Hardened-BYOS-Azure
aide-0.16-24.1
Image SLES15-SP6-Hardened-BYOS-EC2
aide-0.16-24.1
Image SLES15-SP6-Hardened-BYOS-GCE
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-Azure
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-BYOS
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-BYOS-Azure
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-BYOS-EC2
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-BYOS-GCE
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-EC2
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-GCE
aide-0.16-24.1
SUSE Enterprise Storage 6
aide-0.16-24.1
SUSE Enterprise Storage 7
aide-0.16-24.1
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
aide-0.16-24.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
aide-0.16-24.1
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS
aide-0.16-24.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
aide-0.16-24.1
SUSE Linux Enterprise High Performance Computing 15-ESPOS
aide-0.16-24.1
SUSE Linux Enterprise High Performance Computing 15-LTSS
aide-0.16-24.1
SUSE Linux Enterprise Micro 5.1
aide-0.16-24.1
SUSE Linux Enterprise Module for Basesystem 15 SP3
aide-0.16-24.1
SUSE Linux Enterprise Server 15 SP1-BCL
aide-0.16-24.1
SUSE Linux Enterprise Server 15 SP1-LTSS
aide-0.16-24.1
SUSE Linux Enterprise Server 15 SP2-BCL
aide-0.16-24.1
SUSE Linux Enterprise Server 15 SP2-LTSS
aide-0.16-24.1
SUSE Linux Enterprise Server 15-LTSS
aide-0.16-24.1
SUSE Linux Enterprise Server for SAP Applications 15
aide-0.16-24.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
aide-0.16-24.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
aide-0.16-24.1
SUSE Manager Proxy 4.1
aide-0.16-24.1
SUSE Manager Retail Branch Server 4.1
aide-0.16-24.1
SUSE Manager Server 4.1
aide-0.16-24.1
Ссылки
- Link for SUSE-SU-2022:0150-1
- E-Mail link for SUSE-SU-2022:0150-1
- SUSE Security Ratings
- SUSE Bug 1194735
- SUSE CVE CVE-2021-45417 page
Описание
AIDE before 0.17.4 allows local users to obtain root privileges via crafted file metadata (such as XFS extended attributes or tmpfs ACLs), because of a heap-based buffer overflow.
Затронутые продукты
Image SLES15-SP4-Hardened-BYOS-Azure:aide-0.16-24.1
Image SLES15-SP4-Hardened-BYOS-EC2:aide-0.16-24.1
Image SLES15-SP4-Hardened-BYOS-GCE:aide-0.16-24.1
Image SLES15-SP4-Hardened-BYOS:aide-0.16-24.1
Ссылки
- CVE-2021-45417
- SUSE Bug 1194735
- SUSE Bug 1196390
- SUSE Bug 1225074