Описание
Security update for hiawatha
This update for hiawatha to version 10.8.4 fixes the following issue:
Security issue fixed:
- CVE-2019-8358: Fixed a vulnerability which allowed a remote atacker to perform directory traversal when AllowDotFiles was enabled (bsc#1125751).
Список пакетов
openSUSE Leap 15.0
hiawatha-10.8.4-lp150.2.4.1
hiawatha-letsencrypt-10.8.4-lp150.2.4.1
Ссылки
- E-Mail link for openSUSE-SU-2019:0294-1
- SUSE Security Ratings
- SUSE Bug 1125751
- SUSE CVE CVE-2019-8358 page
Описание
In Hiawatha before 10.8.4, a remote attacker is able to do directory traversal if AllowDotFiles is enabled.
Затронутые продукты
openSUSE Leap 15.0:hiawatha-10.8.4-lp150.2.4.1
openSUSE Leap 15.0:hiawatha-letsencrypt-10.8.4-lp150.2.4.1
Ссылки
- CVE-2019-8358
- SUSE Bug 1125751