SUSE-SU-2023:1877-1

Опубликовано: 18 апр. 2023

Источник: suse-cvrf

Описание

Security update for pgadmin4

This update for pgadmin4 fixes the following issues:

CVE-2023-0241: Fixed a directory traversal vulnerability (bsc#1207464).

Список пакетов

SUSE Enterprise Storage 7.1

pgadmin4-4.30-150300.3.9.1

pgadmin4-doc-4.30-150300.3.9.1

pgadmin4-web-4.30-150300.3.9.1

SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

pgadmin4-4.30-150300.3.9.1

pgadmin4-doc-4.30-150300.3.9.1

pgadmin4-web-4.30-150300.3.9.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

pgadmin4-4.30-150300.3.9.1

pgadmin4-doc-4.30-150300.3.9.1

pgadmin4-web-4.30-150300.3.9.1

SUSE Linux Enterprise Module for Server Applications 15 SP4

pgadmin4-4.30-150300.3.9.1

pgadmin4-doc-4.30-150300.3.9.1

pgadmin4-web-4.30-150300.3.9.1

SUSE Linux Enterprise Real Time 15 SP3

pgadmin4-4.30-150300.3.9.1

pgadmin4-doc-4.30-150300.3.9.1

pgadmin4-web-4.30-150300.3.9.1

SUSE Linux Enterprise Server 15 SP3-LTSS

pgadmin4-4.30-150300.3.9.1

pgadmin4-doc-4.30-150300.3.9.1

pgadmin4-web-4.30-150300.3.9.1

SUSE Linux Enterprise Server for SAP Applications 15 SP3

pgadmin4-4.30-150300.3.9.1

pgadmin4-doc-4.30-150300.3.9.1

pgadmin4-web-4.30-150300.3.9.1

SUSE Manager Proxy 4.2

pgadmin4-4.30-150300.3.9.1

pgadmin4-doc-4.30-150300.3.9.1

pgadmin4-web-4.30-150300.3.9.1

SUSE Manager Server 4.2

pgadmin4-4.30-150300.3.9.1

pgadmin4-doc-4.30-150300.3.9.1

pgadmin4-web-4.30-150300.3.9.1

openSUSE Leap 15.4

pgadmin4-4.30-150300.3.9.1

pgadmin4-doc-4.30-150300.3.9.1

pgadmin4-web-4.30-150300.3.9.1

pgadmin4-web-uwsgi-4.30-150300.3.9.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20231877-1/
Link for SUSE-SU-2023:1877-1
https://lists.suse.com/pipermail/sle-security-updates/2023-April/014480.html
E-Mail link for SUSE-SU-2023:1877-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1207464
SUSE Bug 1207464
https://www.suse.com/security/cve/CVE-2023-0241/
SUSE CVE CVE-2023-0241 page

Описание

pgAdmin 4 versions prior to v6.19 contains a directory traversal vulnerability. A user of the product may change another user's settings or alter the database.

Затронутые продукты

SUSE Enterprise Storage 7.1:pgadmin4-4.30-150300.3.9.1

SUSE Enterprise Storage 7.1:pgadmin4-doc-4.30-150300.3.9.1

SUSE Enterprise Storage 7.1:pgadmin4-web-4.30-150300.3.9.1

SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS:pgadmin4-4.30-150300.3.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-0241.html
CVE-2023-0241
https://bugzilla.suse.com/1207464
SUSE Bug 1207464

SUSE-SU-2023:1877-1

Описание

Список пакетов

SUSE Enterprise Storage 7.1

SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

SUSE Linux Enterprise Module for Server Applications 15 SP4

SUSE Linux Enterprise Real Time 15 SP3

SUSE Linux Enterprise Server 15 SP3-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP3

SUSE Manager Proxy 4.2

SUSE Manager Server 4.2

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2023-0241

Описание

Затронутые продукты

Ссылки