Lucene search
SuseOPENSUSE-SU-2020:0124-1HistoryJan 29, 2020 - 12:00 a.m.
Security update for apt-cacher-ng (important)
2020-01-2900:00:00
lists.opensuse.org
51
0.0004 Low
EPSS
Percentile
5.1%
An update that fixes two vulnerabilities is now available.
Description:
This update for apt-cacher-ng fixes the following issues:
- CVE-2019-18899: Fixed a symlink attack which could allow to overwrite
arbitrary data (boo#1157703). - CVE-2020-5202: Fixed an information leak if a local user won a race
condition to listen to localhost:3142 (boo#1157706).
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.1:
zypper in -t patch openSUSE-2020-124=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.1 | x86_64 | < - openSUSE Leap 15.1 (x86_64): | - openSUSE Leap 15.1 (x86_64):.x86_64.rpm |
Related
openvas
openvas
openSUSE: Security Advisory for apt-cacher-ng (openSUSE-SU-2020:0124_1)
2020-01-30 00:00:00
suse
suse
Security update for apt-cacher-ng (important)
2020-01-29 00:00:00
nessus
nessus
openSUSE Security Update : apt-cacher-ng (openSUSE-2020-124)
2020-01-30 00:00:00
cve
cve
CVE-2019-18899
2020-01-23 15:15:13
CVE-2020-5202
2020-01-21 18:15:13
cvelist
cvelist
CVE-2019-18899 apt-cacher-ng insecure use of /run/apt-cacher-ng
2020-01-20 00:00:00
CVE-2020-5202
2020-01-21 17:54:04
prion
prion
Design/Logic Flaw
2020-01-23 15:15:00
Information disclosure
2020-01-21 18:15:00
ubuntucve
ubuntucve
CVE-2019-18899
2020-01-23 00:00:00
CVE-2020-5202
2020-01-21 00:00:00
nvd
nvd
CVE-2019-18899
2020-01-23 15:15:13
CVE-2020-5202
2020-01-21 18:15:13
debiancve
debiancve
CVE-2019-18899
2020-01-23 15:15:13
CVE-2020-5202
2020-01-21 18:15:13