4 matches found
CVE-2017-1000199
tcmu-runner version 0.91 up to 1.20 is vulnerable to information disclosure in handlerqcow.so resulting in non-privileged users being able to check for existence of any file with root privileges...
CVE-2017-1000199
Affected product: tcmu-runner (versions 0.91–1.20). Root cause: information disclosure in handler_qcow.so allowing non-privileged users to check for existence of any file with root privileges. Impact: local information disclosure; no remote exploitation details provided. Remediation: apply the Re...
SUSE SLES12 Security Update : tcmu-runner (SUSE-SU-2017:2601-1)
This update for tcmu-runner fixes the following issues: Security issues fixed : - CVE-2017-1000198: The glfs handler allowed local DoS via crafted CheckConfig strings bsc1049485 - CVE-2017-1000199: The qcow handler leaked information via the CheckConfig D-Bus method bsc1049491 Note that Tenable...
SUSE-SU-2017:2601-1 Security update for tcmu-runner
This update for tcmu-runner fixes the following issues: Security issues fixed: - CVE-2017-1000198: The glfs handler allowed local DoS via crafted CheckConfig strings bsc1049485 - CVE-2017-1000199: The qcow handler leaked information via the CheckConfig D-Bus method bsc1049491...