Описание
Security update for opensuse-welcome
This update for opensuse-welcome fixes the following issues:
Update to version 0.1.9+git.35.4b9444a:
- CVE-2023-32184: panellayouter: use QTemporaryFile for applyLayout() (boo#1213708).
- Translation updates.
Список пакетов
SUSE Package Hub 15 SP5
opensuse-welcome-0.1.9+git.35.4b9444a-bp155.2.3.1
opensuse-welcome-lang-0.1.9+git.35.4b9444a-bp155.2.3.1
openSUSE Leap 15.5
opensuse-welcome-0.1.9+git.35.4b9444a-bp155.2.3.1
opensuse-welcome-lang-0.1.9+git.35.4b9444a-bp155.2.3.1
Ссылки
- E-Mail link for openSUSE-SU-2023:0219-1
- SUSE Security Ratings
- SUSE Bug 1213708
- SUSE CVE CVE-2023-32184 page
Описание
A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen This issue affects opensuse-welcome: from 0.1 before 0.1.9+git.35.4b9444a.
Затронутые продукты
SUSE Package Hub 15 SP5:opensuse-welcome-0.1.9+git.35.4b9444a-bp155.2.3.1
SUSE Package Hub 15 SP5:opensuse-welcome-lang-0.1.9+git.35.4b9444a-bp155.2.3.1
openSUSE Leap 15.5:opensuse-welcome-0.1.9+git.35.4b9444a-bp155.2.3.1
openSUSE Leap 15.5:opensuse-welcome-lang-0.1.9+git.35.4b9444a-bp155.2.3.1
Ссылки
- CVE-2023-32184
- SUSE Bug 1213708