5 matches found
SUSE SLED12 / SLES12 Security Update : dracut (SUSE-SU-2015:2065-1)
The dracut package was updated to fix the following security and non-security issues : - CVE-2015-0794: Use mktemp instead of hard-coded filenames, possible vulnerability bsc935338. - Always install mdraid modules bsc935993. - Add notice when dracut failed to install modules bsc952491. - Always...
SUSE-SU-2015:2065-1 Security update for dracut
The dracut package was updated to fix the following security and non-security issues: - CVE-2015-0794: Use mktemp instead of hardcoded filenames, possible vulnerability bsc935338. - Always install mdraid modules bsc935993. - Add notice when dracut failed to install modules bsc952491. - Always...
CVE-2015-0794
modules.d/90crypt/module-setup.sh in the dracut package before 037-17.30.1 in openSUSE 13.2 allows local users to have unspecified impact via a symlink attack on /tmp/dracutblockuuid.map...
CVE-2015-0794
CVE-2015-0794 affects the dracut package (openSUSE 13.2) prior to 037-17.30.1 via a symlink attack on /tmp/dracut_block_uuid.map in modules.d/90crypt/module-setup.sh. Root cause: use of fixed filenames instead of safe tmp handling; patched in SUSE-SU-2015:2065-1 with mktemp usage. Impact is descr...
openSUSE Security Update : dracut (openSUSE-2015-765)
The dracut package was updated to fix the following security and non security issues : - CVE-2015-0794: Use mktemp instead of hardcoded filenames, possible vulnerability bnc935338. - Always install mdraid modules boo935993. - Add notice when dracut failed to install modules bsc952491. %NASLMINLEV...