Описание
Security update for libcgroup
This update for libcgroup fixes the following issues:
The following security vulnerability was fixed:
- CVE-2018-14348: Fixed a permission issue with /var/log/cgred. The permissions were not restrictive enough beforehand and ignored any umask setting. (boo#1100365)
Список пакетов
openSUSE Leap 42.3
libcgroup-0.41-8.3.1
libcgroup-devel-0.41-8.3.1
libcgroup-tools-0.41-8.3.1
libcgroup1-0.41-8.3.1
libcgroup1-32bit-0.41-8.3.1
Ссылки
- E-Mail link for openSUSE-SU-2018:2241-1
- SUSE Security Ratings
Описание
libcgroup up to and including 0.41 creates /var/log/cgred with mode 0666 regardless of the configured umask, leading to disclosure of information.
Затронутые продукты
openSUSE Leap 42.3:libcgroup-0.41-8.3.1
openSUSE Leap 42.3:libcgroup-devel-0.41-8.3.1
openSUSE Leap 42.3:libcgroup-tools-0.41-8.3.1
openSUSE Leap 42.3:libcgroup1-0.41-8.3.1
Ссылки
- CVE-2018-14348
- SUSE Bug 1100365
- SUSE Bug 1149966