SUSE-SU-2023:0746-1

Опубликовано: 15 мар. 2023

Источник: suse-cvrf

Описание

Security update for perl-Net-Server

This update for perl-Net-Server fixes the following issues:

CVE-2013-1841: Fixed insufficient hostname access checking (bsc#808830).

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP4

perl-Net-Server-2.009-150000.3.3.1

SUSE Linux Enterprise Real Time 15 SP3

perl-Net-Server-2.009-150000.3.3.1

openSUSE Leap 15.4

perl-Net-Server-2.009-150000.3.3.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20230746-1/
Link for SUSE-SU-2023:0746-1
https://lists.suse.com/pipermail/sle-security-updates/2023-March/014043.html
E-Mail link for SUSE-SU-2023:0746-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/808830
SUSE Bug 808830
https://www.suse.com/security/cve/CVE-2013-1841/
SUSE CVE CVE-2013-1841 page

Описание

Net-Server, when the reverse-lookups option is enabled, does not check if the hostname resolves to the source IP address, which might allow remote attackers to bypass ACL restrictions via the hostname parameter.

Затронутые продукты

SUSE Linux Enterprise Module for Basesystem 15 SP4:perl-Net-Server-2.009-150000.3.3.1

SUSE Linux Enterprise Real Time 15 SP3:perl-Net-Server-2.009-150000.3.3.1

openSUSE Leap 15.4:perl-Net-Server-2.009-150000.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2013-1841.html
CVE-2013-1841
https://bugzilla.suse.com/808830
SUSE Bug 808830

SUSE-SU-2023:0746-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP4

SUSE Linux Enterprise Real Time 15 SP3

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2013-1841

Описание

Затронутые продукты

Ссылки