Описание
Security update for socat
This update for socat fixes the following issues:
- CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory (bsc#1225462)
Список пакетов
Image SLES15-SP4-SAP-Azure-LI-BYOS
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-BYOS
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-BYOS-Azure
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-BYOS-EC2
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-BYOS-GCE
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-Hardened
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-Hardened-Azure
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-Hardened-BYOS
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-Hardened-BYOS-Azure
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-Hardened-BYOS-EC2
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-Hardened-BYOS-GCE
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-Hardened-GCE
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-CHOST-BYOS-Aliyun
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-CHOST-BYOS-Azure
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-CHOST-BYOS-EC2
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-CHOST-BYOS-GCE
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-CHOST-BYOS-GDC
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-CHOST-BYOS-SAP-CCloud
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-SAP-Azure-3P
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-SAP-Azure-LI-BYOS
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-SAP-Azure-LI-BYOS-Production
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-SAP-BYOS-Azure
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-SAP-BYOS-EC2
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-SAP-BYOS-GCE
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-SAP-Hardened-Azure
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
socat-1.8.0.0-150400.14.6.1
Image SLES15-SP5-SAP-Hardened-GCE
socat-1.8.0.0-150400.14.6.1
SUSE Linux Enterprise Micro 5.3
socat-1.8.0.0-150400.14.6.1
SUSE Linux Enterprise Micro 5.4
socat-1.8.0.0-150400.14.6.1
SUSE Linux Enterprise Micro 5.5
socat-1.8.0.0-150400.14.6.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
socat-1.8.0.0-150400.14.6.1
openSUSE Leap 15.5
socat-1.8.0.0-150400.14.6.1
openSUSE Leap Micro 5.5
socat-1.8.0.0-150400.14.6.1
Ссылки
- Link for SUSE-SU-2024:4302-1
- E-Mail link for SUSE-SU-2024:4302-1
- SUSE Security Ratings
- SUSE Bug 1225462
- SUSE CVE CVE-2024-54661 page
Описание
readline.sh in socat before1.8.0.2 relies on the /tmp/$USER/stderr2 file.
Затронутые продукты
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production:socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-Azure-LI-BYOS:socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production:socat-1.8.0.0-150400.14.6.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS:socat-1.8.0.0-150400.14.6.1
Ссылки
- CVE-2024-54661
- SUSE Bug 1225462