CVE-2021-25317
CVE-2021-25317 describes an Incorrect Default Permissions vulnerability in the packaging of cups for SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Manager Server 4.0, SUSE OpenStack Cloud Crowbar 9; openSUSE Leap 15.2, Factory. Local attackers with control of the lp users can create files as roo...