openSUSE-SU-2020:0491-1

Опубликовано: 09 апр. 2020

Источник: suse-cvrf

Описание

Security update for exim

This update for exim fixes the following issues:

CVE-2020-8015: Fixed a local privilege escalation from user mail to root (boo#1154183).

Список пакетов

openSUSE Leap 15.1

exim-4.88-lp151.4.12.1

eximon-4.88-lp151.4.12.1

eximstats-html-4.88-lp151.4.12.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WJR5MNZSFIS6CLLRASPPRSAP44RXZCZX/
E-Mail link for openSUSE-SU-2020:0491-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1154183
SUSE Bug 1154183
https://bugzilla.suse.com/1160726
SUSE Bug 1160726
https://www.suse.com/security/cve/CVE-2020-8015/
SUSE CVE CVE-2020-8015 page

Описание

A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of exim in openSUSE Factory allows local attackers to escalate from user mail to root. This issue affects: openSUSE Factory exim versions prior to 4.93.0.4-3.1.

Затронутые продукты

openSUSE Leap 15.1:exim-4.88-lp151.4.12.1

openSUSE Leap 15.1:eximon-4.88-lp151.4.12.1

openSUSE Leap 15.1:eximstats-html-4.88-lp151.4.12.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-8015.html
CVE-2020-8015
https://bugzilla.suse.com/1154062
SUSE Bug 1154062
https://bugzilla.suse.com/1154183
SUSE Bug 1154183

openSUSE-SU-2020:0491-1

Описание

Список пакетов

openSUSE Leap 15.1

Ссылки

Уязвимость: CVE-2020-8015

Описание

Затронутые продукты

Ссылки