9 matches found
openSUSE Security Update : trousers (openSUSE-2020-744)
This update for trousers fixes the following issues : - CVE-2019-18898: Fixed a local symlink attack where a rogue tss user could have gain ownership of arbitrary files in the system during installation/update of the trousers package bsc1157651. This update was imported from the...
CVE-2019-18898
UNIX Symbolic Link Symlink Following vulnerability in the trousers package of SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allowed local attackers escalate privileges from user tss to root. This issue affects: SUSE Linux Enterprise Server 15 SP1 trousers versions prior to 0.3.14-6.3.1...
CVE-2019-18898
CVE-2019-18898 concerns a local symlink attack in the trousers package for SUSE/openSUSE, allowing a local attacker (tss user) to gain ownership of arbitrary files during installation/update. The issue affects SUSE Linux Enterprise Server 15 SP1 trousers versions prior to 0.3.14-6.3.1 and openSUS...
CVE-2019-18898 trousers: Local privilege escalation from tss to root
UNIX Symbolic Link Symlink Following vulnerability in the trousers package of SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allowed local attackers escalate privileges from user tss to root. This issue affects: SUSE Linux Enterprise Server 15 SP1 trousers versions prior to 0.3.14-6.3.1...
openSUSE Security Update : trousers (openSUSE-2020-15)
This update for trousers fixes the following issues : - CVE-2019-18898: Fixed a local symlink attack where a rogue tss user could have gain ownership of arbitrary files in the system during installation/update of the trousers package bsc1157651. This update was imported from the...
openSUSE: Security Advisory for trousers (openSUSE-SU-2020:0015-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2019-18898
UNIX Symbolic Link Symlink Following vulnerability in the trousers package of SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allowed local attackers escalate privileges from user tss to root. This issue affects: SUSE Linux Enterprise Server 15 SP1 trousers versions prior to 0.3.14-6.3.1...
SUSE SLED15 / SLES15 Security Update : trousers (SUSE-SU-2019:3349-1)
This update for trousers fixes the following issues : CVE-2019-18898: Fixed a local symlink attack where a rogue tss user could have gain ownership of arbitrary files in the system during installation/update of the trousers package bsc1157651. Note that Tenable Network Security has extracted the...
SUSE-SU-2019:3349-1 Security update for trousers
This update for trousers fixes the following issues: - CVE-2019-18898: Fixed a local symlink attack where a rogue tss user could have gain ownership of arbitrary files in the system during installation/update of the trousers package bsc1157651...