Security update for openwsman (important)

2019-04-16T21:08:55
ID OPENSUSE-SU-2019:1217-1
Type suse
Reporter Suse
Modified 2019-04-16T21:08:55

Description

This update for openwsman fixes the following issues:

Security issues fixed:

  • CVE-2019-3816: Fixed a vulnerability in openwsmand deamon which could lead to arbitary file disclosure (bsc#1122623).
  • CVE-2019-3833: Fixed a vulnerability in process_connection() which could allow an attacker to trigger an infinite loop which leads to Denial of Service (bsc#1122623).

Other issues addressed:

  • Directory listing without authentication fixed (bsc#1092206).

This update was imported from the SUSE:SLE-15:Update update project.