SUSE-SU-2023:3189-1

Опубликовано: 03 авг. 2023

Источник: suse-cvrf

Описание

Security update for xtrans

This update for xtrans fixes the following issues:

CVE-2020-25697: Fixed local privilege escalation via TRANS_ABSTRACT on the client side (bsc#1178613).

Список пакетов

SUSE Linux Enterprise Software Development Kit 12 SP5

xtrans-1.3.5-5.3.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20233189-1/
Link for SUSE-SU-2023:3189-1
https://lists.suse.com/pipermail/sle-updates/2023-August/030793.html
E-Mail link for SUSE-SU-2023:3189-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1178613
SUSE Bug 1178613
https://www.suse.com/security/cve/CVE-2020-25697/
SUSE CVE CVE-2020-25697 page

Описание

A privilege escalation flaw was found in the Xorg-x11-server due to a lack of authentication for X11 clients. This flaw allows an attacker to take control of an X application by impersonating the server it is expecting to connect to.

Затронутые продукты

SUSE Linux Enterprise Software Development Kit 12 SP5:xtrans-1.3.5-5.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-25697.html
CVE-2020-25697
https://bugzilla.suse.com/1178613
SUSE Bug 1178613

SUSE-SU-2023:3189-1

Описание

Список пакетов

SUSE Linux Enterprise Software Development Kit 12 SP5

Ссылки

Уязвимость: CVE-2020-25697

Описание

Затронутые продукты

Ссылки