Описание
Security update for amazon-ssm-agent
This update for amazon-ssm-agent fixes the following issues:
- Update to version 3.1.1260.0
- CVE-2022-29527: Fixed a bug which creates world-writable sudoers file during runtime. (bsc#1196556)
Список пакетов
Image SLES12-SP5-EC2-BYOS
amazon-ssm-agent-3.1.1260.0-4.27.2
Image SLES12-SP5-EC2-ECS-On-Demand
amazon-ssm-agent-3.1.1260.0-4.27.2
Image SLES12-SP5-EC2-On-Demand
amazon-ssm-agent-3.1.1260.0-4.27.2
Image SLES12-SP5-EC2-SAP-BYOS
amazon-ssm-agent-3.1.1260.0-4.27.2
Image SLES12-SP5-EC2-SAP-On-Demand
amazon-ssm-agent-3.1.1260.0-4.27.2
SUSE Linux Enterprise Module for Public Cloud 12
amazon-ssm-agent-3.1.1260.0-4.27.2
Ссылки
- Link for SUSE-SU-2022:3654-1
- E-Mail link for SUSE-SU-2022:3654-1
- SUSE Security Ratings
- SUSE Bug 1196556
- SUSE CVE CVE-2022-29527 page
Описание
Amazon AWS amazon-ssm-agent before 3.1.1208.0 creates a world-writable sudoers file, which allows local attackers to inject Sudo rules and escalate privileges to root. This occurs in certain situations involving a race condition.
Затронутые продукты
Image SLES12-SP5-EC2-BYOS:amazon-ssm-agent-3.1.1260.0-4.27.2
Image SLES12-SP5-EC2-ECS-On-Demand:amazon-ssm-agent-3.1.1260.0-4.27.2
Image SLES12-SP5-EC2-On-Demand:amazon-ssm-agent-3.1.1260.0-4.27.2
Image SLES12-SP5-EC2-SAP-BYOS:amazon-ssm-agent-3.1.1260.0-4.27.2
Ссылки
- CVE-2022-29527
- SUSE Bug 1196556