Описание
Security update for shadow
This update for shadow fixes the following issues:
- CVE-2023-29383: Fixed apparent /etc/shadow manipulation via chfn (bsc#1210507).
Список пакетов
Container ses/7.1/ceph/grafana:latest
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container ses/7.1/ceph/haproxy:latest
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container ses/7.1/ceph/keepalived:latest
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container ses/7.1/ceph/prometheus-alertmanager:latest
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container ses/7.1/ceph/prometheus-node-exporter:latest
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container ses/7.1/ceph/prometheus-server:latest
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container ses/7.1/ceph/prometheus-snmp_notifier:latest
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container ses/7.1/cephcsi/cephcsi:latest
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container ses/7.1/cephcsi/csi-attacher:v4.1.0
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container ses/7.1/cephcsi/csi-node-driver-registrar:v2.7.0
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container ses/7.1/cephcsi/csi-provisioner:v3.4.0
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container ses/7.1/cephcsi/csi-resizer:v1.7.0
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container ses/7.1/cephcsi/csi-snapshotter:v6.2.1
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container ses/7.1/rook/ceph:latest
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container suse/ltss/sle15.3/bci-base:latest
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container suse/sle-micro-rancher/5.2:latest
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container suse/sle-micro/5.1/toolbox:latest
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container suse/sle-micro/5.2/toolbox:latest
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Container suse/sle15:15.3
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-BYOS-Azure
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-BYOS-EC2-HVM
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-BYOS-GCE
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-CHOST-BYOS-Aliyun
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-CHOST-BYOS-Azure
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-CHOST-BYOS-EC2
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-CHOST-BYOS-GCE
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-CHOST-BYOS-SAP-CCloud
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-HPC-BYOS-Azure
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-HPC-BYOS-EC2-HVM
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-HPC-BYOS-GCE
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-Azure
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-EC2-HVM
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-Manager-4-2-Proxy-BYOS-GCE
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-Azure
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-EC2-HVM
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-Manager-4-2-Server-BYOS-GCE
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-Micro-5-1-BYOS-Azure
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-Micro-5-1-BYOS-EC2-HVM
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-Micro-5-1-BYOS-GCE
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-Micro-5-2-BYOS-Azure
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-Micro-5-2-BYOS-EC2-HVM
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-Micro-5-2-BYOS-GCE
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-SAP-BYOS-Azure
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-SAP-BYOS-EC2-HVM
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-SAP-BYOS-GCE
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-SAPCAL-Azure
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-SAPCAL-EC2-HVM
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Image SLES15-SP3-SAPCAL-GCE
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
SUSE Enterprise Storage 7.1
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
SUSE Linux Enterprise Micro 5.1
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
SUSE Linux Enterprise Micro 5.2
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
SUSE Linux Enterprise Real Time 15 SP3
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
SUSE Linux Enterprise Server 15 SP3-LTSS
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
SUSE Manager Proxy 4.2
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
SUSE Manager Server 4.2
login_defs-4.8.1-150300.4.6.1
shadow-4.8.1-150300.4.6.1
Ссылки
- Link for SUSE-SU-2023:2070-1
- E-Mail link for SUSE-SU-2023:2070-1
- SUSE Security Ratings
- SUSE Bug 1210507
- SUSE CVE CVE-2023-29383 page
Описание
In Shadow 4.13, it is possible to inject control characters into fields provided to the SUID program chfn (change finger). Although it is not possible to exploit this directly (e.g., adding a new user fails because \n is in the block list), it is possible to misrepresent the /etc/passwd file when viewed. Use of \r manipulations and Unicode characters to work around blocking of the : character make it possible to give the impression that a new user has been added. In other words, an adversary may be able to convince a system administrator to take the system offline (an indirect, social-engineered denial of service) by demonstrating that "cat /etc/passwd" shows a rogue user account.
Затронутые продукты
Container ses/7.1/ceph/grafana:latest:login_defs-4.8.1-150300.4.6.1
Container ses/7.1/ceph/grafana:latest:shadow-4.8.1-150300.4.6.1
Container ses/7.1/ceph/haproxy:latest:login_defs-4.8.1-150300.4.6.1
Container ses/7.1/ceph/haproxy:latest:shadow-4.8.1-150300.4.6.1
Ссылки
- CVE-2023-29383
- SUSE Bug 1210507