SUSE CVE-2020-8013

A UNIX Symbolic Link Symlink Following vulnerability in chkstat of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 11 set permissions intended for specific binaries on other binaries because it erroneously followed symlinks. The symlinks can't be...

SUSE SLES12 Security Update : permissions (SUSE-SU-2021:2280-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2280-1 advisory. - The /usr/sbin/pinger binary packaged with squid in SUSE Linux Enterprise Server 15 before and including version 4.8-5.8.1 and in...

SUSE: Security Advisory (SUSE-SU-2020:14304-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:0547-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2020:0545-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15 Security Update : permissions (SUSE-SU-2020:1163-1)

This update for permissions fixes the following issues : Security issue fixed : CVE-2020-8013: Fixed a local privilege escalation with mrsh and wodim bsc1163922. Non-security issues fixed : Fixed regression where chkstat breaks without /proc available bsc1160764, bsc1160594 Fixed capability...

SUSE-RU-2020:0603-1 Recommended update for permissions

This update for permissions fixes the following issues: - CVE-2020-8013: Fixed an improper check which could have allowed the setting of unintented setuid bits bsc1163922. - Fixed handling of relative directory symlinks in chkstat. - Whitelisted postgres sticky directories bsc1123886. - Fixed...

openSUSE Security Update : permissions (openSUSE-2020-302)

This update for permissions fixes the following issues : Security issues fixed : - CVE-2019-3687: Fixed a privilege escalation which could allow a local user to read network traffic if wireshark is installed bsc1148788 - CVE-2020-8013: Fixed an issue where chkstat set unintended setuid/capabiliti...

openSUSE: Security Advisory for permissions (openSUSE-SU-2020:0302-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2020-8013

A UNIX Symbolic Link Symlink Following vulnerability in chkstat of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 11 set permissions intended for specific binaries on other binaries because it erroneously followed symlinks. The symlinks can't be...

CVE-2020-8013 permissions: chkstat sets unintended setuid/capabilities for mrsh and wodim

A UNIX Symbolic Link Symlink Following vulnerability in chkstat of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 11 set permissions intended for specific binaries on other binaries because it erroneously followed symlinks. The symlinks can't be...

SUSE SLED15 / SLES15 Security Update : permissions (SUSE-SU-2020:0547-1)

This update for permissions fixes the following issues : Security issues fixed : CVE-2019-3687: Fixed a privilege escalation which could allow a local user to read network traffic if wireshark is installed bsc1148788 CVE-2020-8013: Fixed an issue where chkstat set unintended setuid/capabilities f...

SUSE SLES12 Security Update : permissions (SUSE-SU-2020:0545-1)

This update for permissions fixes the following issues : Security issues fixed : CVE-2020-8013: Fixed an issue where chkstat set unintended setuid/capabilities for mrsh and wodim bsc1163922. Non-security issues fixed: Fixed a regression where chkstat broke when /proc was not available bsc1160764,...

SUSE-RU-2020:14304-1 Recommended update for permissions

This update for permissions fixes the following issues: Security issues fixed: - CVE-2020-8013: Fixed a missing symlink check. Do not follow symlinks that are the final path element bsc1163922. - Fixed a regression where chkstat broke when /proc was not available bsc1160764, bsc1160594...

SUSE-SU-2020:0545-1 Security update for permissions

This update for permissions fixes the following issues: Security issues fixed: - CVE-2020-8013: Fixed an issue where chkstat set unintended setuid/capabilities for mrsh and wodim bsc1163922. Non-security issues fixed: - Fixed a regression where chkstat broke when /proc was not available bsc116076...