Описание
Security update for aide
This update for aide fixes the following issues:
- CVE-2021-45417: Fix a bufferoverflow in base64 functions (bsc#1194735)
Список пакетов
Image SLES15-SP4-Hardened-BYOS
aide-0.16-24.1
Image SLES15-SP4-Hardened-BYOS-Azure
aide-0.16-24.1
Image SLES15-SP4-Hardened-BYOS-EC2
aide-0.16-24.1
Image SLES15-SP4-Hardened-BYOS-GCE
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-Azure
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-BYOS
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-BYOS-Azure
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-BYOS-EC2
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-BYOS-GCE
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-EC2
aide-0.16-24.1
Image SLES15-SP4-SAP-Hardened-GCE
aide-0.16-24.1
Image SLES15-SP5-Hardened-BYOS-Azure
aide-0.16-24.1
Image SLES15-SP5-Hardened-BYOS-EC2
aide-0.16-24.1
Image SLES15-SP5-Hardened-BYOS-GCE
aide-0.16-24.1
Image SLES15-SP5-SAP-Hardened-Azure
aide-0.16-24.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
aide-0.16-24.1
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
aide-0.16-24.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
aide-0.16-24.1
Image SLES15-SP5-SAP-Hardened-EC2
aide-0.16-24.1
Image SLES15-SP5-SAP-Hardened-GCE
aide-0.16-24.1
Image SLES15-SP6-Hardened-BYOS
aide-0.16-24.1
Image SLES15-SP6-Hardened-BYOS-Azure
aide-0.16-24.1
Image SLES15-SP6-Hardened-BYOS-EC2
aide-0.16-24.1
Image SLES15-SP6-Hardened-BYOS-GCE
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-Azure
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-BYOS
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-BYOS-Azure
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-BYOS-EC2
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-BYOS-GCE
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-EC2
aide-0.16-24.1
Image SLES15-SP6-SAP-Hardened-GCE
aide-0.16-24.1
SUSE Linux Enterprise Real Time 15 SP2
aide-0.16-24.1
Ссылки
- Link for SUSE-SU-2022:0150-2
- E-Mail link for SUSE-SU-2022:0150-2
- SUSE Security Ratings
- SUSE Bug 1194735
- SUSE CVE CVE-2021-45417 page
Описание
AIDE before 0.17.4 allows local users to obtain root privileges via crafted file metadata (such as XFS extended attributes or tmpfs ACLs), because of a heap-based buffer overflow.
Затронутые продукты
Image SLES15-SP4-Hardened-BYOS-Azure:aide-0.16-24.1
Image SLES15-SP4-Hardened-BYOS-EC2:aide-0.16-24.1
Image SLES15-SP4-Hardened-BYOS-GCE:aide-0.16-24.1
Image SLES15-SP4-Hardened-BYOS:aide-0.16-24.1
Ссылки
- CVE-2021-45417
- SUSE Bug 1194735
- SUSE Bug 1196390
- SUSE Bug 1225074