openSUSE-SU-2019:1106-1

Опубликовано: 02 апр. 2019

Источник: suse-cvrf

Описание

Security update for python-azure-agent

This update for python-azure-agent fixes the following issues:

CVE-2019-0804: An issue with swapfile handling in the agent created a data leak situation that exposes system memory data. (bsc#1127838)

This update was imported from the SUSE:SLE-15:Update update project.

Список пакетов

openSUSE Leap 15.0

python-azure-agent-2.2.36-lp150.5.10.1

python-azure-agent-test-2.2.36-lp150.5.10.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IVVRHSJEIAKPRMRYUNEMTIHGMUIYZEMP/#IVVRHSJEIAKPRMRYUNEMTIHGMUIYZEMP
E-Mail link for openSUSE-SU-2019:1106-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1127838
SUSE Bug 1127838
https://www.suse.com/security/cve/CVE-2019-0804/
SUSE CVE CVE-2019-0804 page

Описание

An information disclosure vulnerability exists in the way Azure WaLinuxAgent creates swap files on resource disks, aka 'Azure Linux Agent Information Disclosure Vulnerability'.

Затронутые продукты

openSUSE Leap 15.0:python-azure-agent-2.2.36-lp150.5.10.1

openSUSE Leap 15.0:python-azure-agent-test-2.2.36-lp150.5.10.1

Ссылки

https://www.suse.com/security/cve/CVE-2019-0804.html
CVE-2019-0804
https://bugzilla.suse.com/1127838
SUSE Bug 1127838
https://bugzilla.suse.com/1152980
SUSE Bug 1152980

openSUSE-SU-2019:1106-1

Описание

Список пакетов

openSUSE Leap 15.0

Ссылки

Уязвимость: CVE-2019-0804

Описание

Затронутые продукты

Ссылки