Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2024:1106-1

Опубликовано: 03 апр. 2024
Источник: suse-cvrf

Описание

Security update for util-linux

This update for util-linux fixes the following issues:

  • CVE-2024-28085: Properly neutralize escape sequences in wall. (bsc#1221831)
  • Prevent error message if /var/lib/libuuid/clock.txt does not exist (bsc#1194642)
  • Fixed performance degradation (bsc#1207987)

Список пакетов

Container suse/sle15:15.2
libblkid1-2.33.2-150100.4.45.1
libfdisk1-2.33.2-150100.4.45.1
libmount1-2.33.2-150100.4.45.1
libsmartcols1-2.33.2-150100.4.45.1
libuuid1-2.33.2-150100.4.45.1
util-linux-2.33.2-150100.4.45.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
libblkid1-2.33.2-150100.4.45.1
libfdisk1-2.33.2-150100.4.45.1
libmount1-2.33.2-150100.4.45.1
libsmartcols1-2.33.2-150100.4.45.1
libuuid1-2.33.2-150100.4.45.1
util-linux-2.33.2-150100.4.45.1
util-linux-systemd-2.33.2-150100.4.45.1
uuidd-2.33.2-150100.4.45.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
libblkid1-2.33.2-150100.4.45.1
libfdisk1-2.33.2-150100.4.45.1
libmount1-2.33.2-150100.4.45.1
libsmartcols1-2.33.2-150100.4.45.1
libuuid1-2.33.2-150100.4.45.1
util-linux-2.33.2-150100.4.45.1
util-linux-systemd-2.33.2-150100.4.45.1
uuidd-2.33.2-150100.4.45.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
libblkid-devel-2.33.2-150100.4.45.1
libblkid-devel-static-2.33.2-150100.4.45.1
libblkid1-2.33.2-150100.4.45.1
libblkid1-32bit-2.33.2-150100.4.45.1
libfdisk-devel-2.33.2-150100.4.45.1
libfdisk1-2.33.2-150100.4.45.1
libmount-devel-2.33.2-150100.4.45.1
libmount1-2.33.2-150100.4.45.1
libmount1-32bit-2.33.2-150100.4.45.1
libsmartcols-devel-2.33.2-150100.4.45.1
libsmartcols1-2.33.2-150100.4.45.1
libuuid-devel-2.33.2-150100.4.45.1
libuuid-devel-static-2.33.2-150100.4.45.1
libuuid1-2.33.2-150100.4.45.1
libuuid1-32bit-2.33.2-150100.4.45.1
util-linux-2.33.2-150100.4.45.1
util-linux-lang-2.33.2-150100.4.45.1
util-linux-systemd-2.33.2-150100.4.45.1
uuidd-2.33.2-150100.4.45.1
SUSE Linux Enterprise Server 15 SP2-LTSS
libblkid-devel-2.33.2-150100.4.45.1
libblkid-devel-static-2.33.2-150100.4.45.1
libblkid1-2.33.2-150100.4.45.1
libblkid1-32bit-2.33.2-150100.4.45.1
libfdisk-devel-2.33.2-150100.4.45.1
libfdisk1-2.33.2-150100.4.45.1
libmount-devel-2.33.2-150100.4.45.1
libmount1-2.33.2-150100.4.45.1
libmount1-32bit-2.33.2-150100.4.45.1
libsmartcols-devel-2.33.2-150100.4.45.1
libsmartcols1-2.33.2-150100.4.45.1
libuuid-devel-2.33.2-150100.4.45.1
libuuid-devel-static-2.33.2-150100.4.45.1
libuuid1-2.33.2-150100.4.45.1
libuuid1-32bit-2.33.2-150100.4.45.1
util-linux-2.33.2-150100.4.45.1
util-linux-lang-2.33.2-150100.4.45.1
util-linux-systemd-2.33.2-150100.4.45.1
uuidd-2.33.2-150100.4.45.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
libblkid-devel-2.33.2-150100.4.45.1
libblkid-devel-static-2.33.2-150100.4.45.1
libblkid1-2.33.2-150100.4.45.1
libblkid1-32bit-2.33.2-150100.4.45.1
libfdisk-devel-2.33.2-150100.4.45.1
libfdisk1-2.33.2-150100.4.45.1
libmount-devel-2.33.2-150100.4.45.1
libmount1-2.33.2-150100.4.45.1
libmount1-32bit-2.33.2-150100.4.45.1
libsmartcols-devel-2.33.2-150100.4.45.1
libsmartcols1-2.33.2-150100.4.45.1
libuuid-devel-2.33.2-150100.4.45.1
libuuid-devel-static-2.33.2-150100.4.45.1
libuuid1-2.33.2-150100.4.45.1
libuuid1-32bit-2.33.2-150100.4.45.1
util-linux-2.33.2-150100.4.45.1
util-linux-lang-2.33.2-150100.4.45.1
util-linux-systemd-2.33.2-150100.4.45.1
uuidd-2.33.2-150100.4.45.1

Ссылки

Описание

wall in util-linux through 2.40, often installed with setgid tty permissions, allows escape sequences to be sent to other users' terminals through argv. (Specifically, escape sequences received from stdin are blocked, but escape sequences received from argv are not blocked.) There may be plausible scenarios where this leads to account takeover.

Затронутые продукты
Container suse/sle15:15.2:libblkid1-2.33.2-150100.4.45.1
Container suse/sle15:15.2:libfdisk1-2.33.2-150100.4.45.1
Container suse/sle15:15.2:libmount1-2.33.2-150100.4.45.1
Container suse/sle15:15.2:libsmartcols1-2.33.2-150100.4.45.1
Ссылки