openSUSE-SU-2022:0150-2

Опубликовано: 17 фев. 2022

Источник: suse-cvrf

Описание

Security update for aide

This update for aide fixes the following issues:

CVE-2021-45417: Fix a bufferoverflow in base64 functions (bsc#1194735)

Список пакетов

openSUSE Leap 15.4

aide-0.16-24.1

aide-test-0.16-24.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IYI5YPQZJPKLABADGETPRMD6KTGPUFAZ/
E-Mail link for openSUSE-SU-2022:0150-2
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1194735
SUSE Bug 1194735
https://www.suse.com/security/cve/CVE-2021-45417/
SUSE CVE CVE-2021-45417 page

Описание

AIDE before 0.17.4 allows local users to obtain root privileges via crafted file metadata (such as XFS extended attributes or tmpfs ACLs), because of a heap-based buffer overflow.

Затронутые продукты

openSUSE Leap 15.4:aide-0.16-24.1

openSUSE Leap 15.4:aide-test-0.16-24.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-45417.html
CVE-2021-45417
https://bugzilla.suse.com/1194735
SUSE Bug 1194735
https://bugzilla.suse.com/1196390
SUSE Bug 1196390

openSUSE-SU-2022:0150-2

Описание

Список пакетов

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2021-45417

Описание

Затронутые продукты

Ссылки