9 matches found
SUSE SLES12 Security Update : permissions (SUSE-SU-2021:2280-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2280-1 advisory. - Fork package for 12-SP5 bsc1155939 - make btmp root:utmp bsc1050467, bsc1182899 - pcp: remove no longer needed / conflicting...
SUSE: Security Advisory (SUSE-SU-2019:3182-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2019:3180-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for permissions (openSUSE-SU-2019:2672-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : permissions (openSUSE-2019-2672)
This update for permissions fixes the following issues : - CVE-2019-3688: Changed wrong ownership in /usr/sbin/pinger to root:squid which could have allowed a squid user to gain persistence by changing the binary bsc1093414. - CVE-2019-3690: Fixed a privilege escalation through untrusted symbolic...
Security update for permissions (moderate)
openSUSE Security Update: Security update for permissions Announcement ID: openSUSE-SU-2019:2672-1 Rating: moderate References: 1093414 1150734 1157198 Cross-References: CVE-2019-3688 CVE-2019-3690 Affected Products: openSUSE Leap 15.1 An update that solves two vulnerabilities and has one errata ...
SUSE SLED12 / SLES12 Security Update : permissions (SUSE-SU-2019:3183-1)
This update for permissions fixes the following issues : Security issues fixed : CVE-2019-3688: Changed wrong ownership in /usr/sbin/pinger to root:squid which could have allowed a squid user to gain persistence by changing the binary bsc1093414. CVE-2019-3690: Fixed a privilege escalation throug...
SUSE-SU-2019:3180-1 Security update for permissions
This update for permissions fixes the following issues: - CVE-2019-3688: Changed wrong ownership in /usr/sbin/pinger to root:squid which could have allowed a squid user to gain persistence by changing the binary bsc1093414. - CVE-2019-3690: Fixed a privilege escalation through untrusted symbolic...
CVE-2019-3688
CVE-2019-3688 affects the /usr/sbin/pinger binary shipped with squid on SUSE/OpenSUSE, where the binary had squid:root, 0750 permissions. The local attacker who has compromised the squid user could replace or modify the binary to achieve persistence. Affected products include SUSE Linux Enterpris...