Описание
Security update for util-linux
This update for util-linux fixes the following issues:
- CVE-2018-7738: Fixed shell code injection in umount bash-completions (bsc#1213865).
Список пакетов
Container caasp/v4/cilium-operator:1.6.6
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
Container caasp/v4/cilium:1.6.6
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
Container suse/sle15:15.1
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
Container suse/sle15:15.2
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
Image SLES15-SP2-BYOS-Azure
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
Image SLES15-SP2-HPC-BYOS-Azure
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
Image SLES15-SP2-SAP-Azure
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
Image SLES15-SP2-SAP-BYOS-Azure
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
Image SLES15-SP2-SAP-BYOS-EC2-HVM
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
Image SLES15-SP2-SAP-BYOS-GCE
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
Image SLES15-SP2-SAP-EC2-HVM
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
Image SLES15-SP2-SAP-GCE
libblkid1-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
libblkid-devel-2.33.2-150100.4.40.1
libblkid-devel-static-2.33.2-150100.4.40.1
libblkid1-2.33.2-150100.4.40.1
libblkid1-32bit-2.33.2-150100.4.40.1
libfdisk-devel-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount-devel-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libmount1-32bit-2.33.2-150100.4.40.1
libsmartcols-devel-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid-devel-2.33.2-150100.4.40.1
libuuid-devel-static-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
libuuid1-32bit-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-lang-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
libblkid-devel-2.33.2-150100.4.40.1
libblkid-devel-static-2.33.2-150100.4.40.1
libblkid1-2.33.2-150100.4.40.1
libblkid1-32bit-2.33.2-150100.4.40.1
libfdisk-devel-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount-devel-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libmount1-32bit-2.33.2-150100.4.40.1
libsmartcols-devel-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid-devel-2.33.2-150100.4.40.1
libuuid-devel-static-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
libuuid1-32bit-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-lang-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
SUSE Linux Enterprise Server 15 SP1-LTSS
libblkid-devel-2.33.2-150100.4.40.1
libblkid-devel-static-2.33.2-150100.4.40.1
libblkid1-2.33.2-150100.4.40.1
libblkid1-32bit-2.33.2-150100.4.40.1
libfdisk-devel-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount-devel-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libmount1-32bit-2.33.2-150100.4.40.1
libsmartcols-devel-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid-devel-2.33.2-150100.4.40.1
libuuid-devel-static-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
libuuid1-32bit-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-lang-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
SUSE Linux Enterprise Server 15 SP2-LTSS
libblkid-devel-2.33.2-150100.4.40.1
libblkid-devel-static-2.33.2-150100.4.40.1
libblkid1-2.33.2-150100.4.40.1
libblkid1-32bit-2.33.2-150100.4.40.1
libfdisk-devel-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount-devel-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libmount1-32bit-2.33.2-150100.4.40.1
libsmartcols-devel-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid-devel-2.33.2-150100.4.40.1
libuuid-devel-static-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
libuuid1-32bit-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-lang-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
libblkid-devel-2.33.2-150100.4.40.1
libblkid-devel-static-2.33.2-150100.4.40.1
libblkid1-2.33.2-150100.4.40.1
libblkid1-32bit-2.33.2-150100.4.40.1
libfdisk-devel-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount-devel-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libmount1-32bit-2.33.2-150100.4.40.1
libsmartcols-devel-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid-devel-2.33.2-150100.4.40.1
libuuid-devel-static-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
libuuid1-32bit-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-lang-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
libblkid-devel-2.33.2-150100.4.40.1
libblkid-devel-static-2.33.2-150100.4.40.1
libblkid1-2.33.2-150100.4.40.1
libblkid1-32bit-2.33.2-150100.4.40.1
libfdisk-devel-2.33.2-150100.4.40.1
libfdisk1-2.33.2-150100.4.40.1
libmount-devel-2.33.2-150100.4.40.1
libmount1-2.33.2-150100.4.40.1
libmount1-32bit-2.33.2-150100.4.40.1
libsmartcols-devel-2.33.2-150100.4.40.1
libsmartcols1-2.33.2-150100.4.40.1
libuuid-devel-2.33.2-150100.4.40.1
libuuid-devel-static-2.33.2-150100.4.40.1
libuuid1-2.33.2-150100.4.40.1
libuuid1-32bit-2.33.2-150100.4.40.1
util-linux-2.33.2-150100.4.40.1
util-linux-lang-2.33.2-150100.4.40.1
util-linux-systemd-2.33.2-150100.4.40.1
uuidd-2.33.2-150100.4.40.1
Ссылки
- Link for SUSE-SU-2023:4512-1
- E-Mail link for SUSE-SU-2023:4512-1
- SUSE Security Ratings
- SUSE Bug 1213865
- SUSE CVE CVE-2018-7738 page
Описание
In util-linux before 2.32-rc1, bash-completion/umount allows local users to gain privileges by embedding shell commands in a mountpoint name, which is mishandled during a umount command (within Bash) by a different user, as demonstrated by logging in as root and entering umount followed by a tab character for autocompletion.
Затронутые продукты
Container caasp/v4/cilium-operator:1.6.6:libblkid1-2.33.2-150100.4.40.1
Container caasp/v4/cilium-operator:1.6.6:libfdisk1-2.33.2-150100.4.40.1
Container caasp/v4/cilium-operator:1.6.6:libmount1-2.33.2-150100.4.40.1
Container caasp/v4/cilium-operator:1.6.6:libsmartcols1-2.33.2-150100.4.40.1
Ссылки
- CVE-2018-7738
- SUSE Bug 1080740
- SUSE Bug 1084300
- SUSE Bug 1213865