8 matches found
openSUSE: Security Advisory for canna (openSUSE-SU-2022:10091-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-21950
A Improper Access Control vulnerability in the systemd service of cana in openSUSE Backports SLE-15-SP3, openSUSE Backports SLE-15-SP4 allows local users to hijack the UNIX domain socket This issue affects: openSUSE Backports SLE-15-SP3 canna versions prior to canna-3.7p3-bp153.2.3.1. openSUSE...
CVE-2022-21950 canna: unsafe handling of /tmp/.iroha_unix directory
A Improper Access Control vulnerability in the systemd service of cana in openSUSE Backports SLE-15-SP3, openSUSE Backports SLE-15-SP4 allows local users to hijack the UNIX domain socket This issue affects: openSUSE Backports SLE-15-SP3 canna versions prior to canna-3.7p3-bp153.2.3.1. openSUSE...
CVE-2022-21950
CVE-2022-21950 is an improper access-control vulnerability in the canna package’s systemd service on openSUSE Backports SLE-15-SP3/SP4 (and affected Factory). The issue allows local users to hijack the UNIX domain socket due to unsafe handling of the /tmp-based socket directory. Affected canna ve...
MGASA-2022-0306 Updated canna packages fix security vulnerability
Move UNIX socket dir from /tmp to /run to avoid local attackers being able to place bogus directories in its stead. CVE-2022-21950...
Updated canna packages fix security vulnerability
Move UNIX socket dir from /tmp to /run to avoid local attackers being able to place bogus directories in its stead. CVE-2022-21950...
openSUSE 15 Security Update : canna (openSUSE-SU-2022:10091-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:10091-1 advisory. - A Improper Access Control vulnerability in the systemd service of cana in openSUSE Backports SLE-15-SP3, openSUSE Backports SLE-15-SP4 allows loc...
Security update for canna (important)
openSUSE Security Update: Security update for canna Announcement ID: openSUSE-SU-2022:10091-1 Rating: important References: 1199280 Cross-References: CVE-2022-21950 CVSS scores: CVE-2022-21950 SUSE: 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Backports SLE-15-SP4 ...