- Detalji os-a: WN7
- Važnost: IMP
- Operativni sustavi: L
- Kategorije: LSU
openSUSE Security Update: Security update for kauth
______________________________________________________________________________
Announcement ID: openSUSE-SU-2019:0242-1
Rating: moderate
References: #1124863
Cross-References: CVE-2019-7443
Affected Products:
openSUSE Leap 42.3
openSUSE Leap 15.0
openSUSE Backports SLE-15
SUSE Package Hub for SUSE Linux Enterprise 12
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
This update for kauth fixes the following issues:
Security issue fixed:
– CVE-2019-7443: Fixed an insecure handling of arguments in helpers by
removing the support of passing gui variants (bsc#1124863).
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
– openSUSE Leap 42.3:
zypper in -t patch openSUSE-2019-242=1
– openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-242=1
– openSUSE Backports SLE-15:
zypper in -t patch openSUSE-2019-242=1
– SUSE Package Hub for SUSE Linux Enterprise 12:
zypper in -t patch openSUSE-2019-242=1
Package List:
– openSUSE Leap 42.3 (i586 x86_64):
kauth-debugsource-5.32.0-3.3.1
kauth-devel-5.32.0-3.3.1
libKF5Auth5-5.32.0-3.3.1
libKF5Auth5-debuginfo-5.32.0-3.3.1
– openSUSE Leap 42.3 (noarch):
libKF5Auth5-lang-5.32.0-3.3.1
– openSUSE Leap 42.3 (x86_64):
kauth-devel-32bit-5.32.0-3.3.1
libKF5Auth5-32bit-5.32.0-3.3.1
libKF5Auth5-debuginfo-32bit-5.32.0-3.3.1
– openSUSE Leap 15.0 (i586 x86_64):
kauth-debugsource-5.45.0-lp150.3.3.1
kauth-devel-5.45.0-lp150.3.3.1
libKF5Auth5-5.45.0-lp150.3.3.1
libKF5Auth5-debuginfo-5.45.0-lp150.3.3.1
– openSUSE Leap 15.0 (noarch):
libKF5Auth5-lang-5.45.0-lp150.3.3.1
– openSUSE Leap 15.0 (x86_64):
kauth-devel-32bit-5.45.0-lp150.3.3.1
libKF5Auth5-32bit-5.45.0-lp150.3.3.1
libKF5Auth5-32bit-debuginfo-5.45.0-lp150.3.3.1
– openSUSE Backports SLE-15 (aarch64 ppc64le s390x x86_64):
kauth-debugsource-5.45.0-bp150.3.3.1
kauth-devel-5.45.0-bp150.3.3.1
libKF5Auth5-5.45.0-bp150.3.3.1
libKF5Auth5-debuginfo-5.45.0-bp150.3.3.1
– openSUSE Backports SLE-15 (aarch64_ilp32):
kauth-devel-64bit-5.45.0-bp150.3.3.1
libKF5Auth5-64bit-5.45.0-bp150.3.3.1
libKF5Auth5-64bit-debuginfo-5.45.0-bp150.3.3.1
– openSUSE Backports SLE-15 (noarch):
libKF5Auth5-lang-5.45.0-bp150.3.3.1
– SUSE Package Hub for SUSE Linux Enterprise 12 (aarch64 ppc64le s390x x86_64):
kcoreaddons-5.20.0-8.1
kcoreaddons-5.32.0-7.1
kcoreaddons-debugsource-5.20.0-8.1
kcoreaddons-debugsource-5.32.0-7.1
kcoreaddons-devel-5.20.0-8.1
kcoreaddons-devel-5.32.0-7.1
kcoreaddons-devel-debuginfo-5.20.0-8.1
kcoreaddons-devel-debuginfo-5.32.0-7.1
libKF5CoreAddons5-5.20.0-8.1
libKF5CoreAddons5-5.32.0-7.1
libKF5CoreAddons5-debuginfo-5.20.0-8.1
libKF5CoreAddons5-debuginfo-5.32.0-7.1
libpolkit-qt5-1-1-0.112.0-4.1
libpolkit-qt5-1-1-0.112.0-5.1
libpolkit-qt5-1-1-debuginfo-0.112.0-4.1
libpolkit-qt5-1-1-debuginfo-0.112.0-5.1
libpolkit-qt5-1-devel-0.112.0-4.1
libpolkit-qt5-1-devel-0.112.0-5.1
polkit-qt5-1-debugsource-0.112.0-4.1
polkit-qt5-1-debugsource-0.112.0-5.1
– SUSE Package Hub for SUSE Linux Enterprise 12 (aarch64 ppc64le x86_64):
libpolkit-qt5-1-1-0.112.0-2.1
libpolkit-qt5-1-1-debuginfo-0.112.0-2.1
libpolkit-qt5-1-devel-0.112.0-2.1
polkit-qt5-1-debugsource-0.112.0-2.1
– SUSE Package Hub for SUSE Linux Enterprise 12 (aarch64 ppc64le):
kcoreaddons-5.26.0-5.2
kcoreaddons-debugsource-5.26.0-5.2
kcoreaddons-devel-5.26.0-5.2
kcoreaddons-devel-debuginfo-5.26.0-5.2
libKF5CoreAddons5-5.26.0-5.2
libKF5CoreAddons5-debuginfo-5.26.0-5.2
– SUSE Package Hub for SUSE Linux Enterprise 12 (ppc64le x86_64):
kauth-debugsource-5.26.0-9.2
kauth-debugsource-5.32.0-5.1
kauth-devel-5.20.0-10.1
kauth-devel-5.26.0-9.2
kauth-devel-5.32.0-5.1
libKF5Auth5-5.20.0-10.1
libKF5Auth5-5.26.0-9.2
libKF5Auth5-5.32.0-5.1
libKF5Auth5-debuginfo-5.26.0-9.2
libKF5Auth5-debuginfo-5.32.0-5.1
– SUSE Package Hub for SUSE Linux Enterprise 12 (aarch64_ilp32):
kauth-devel-64bit-5.32.0-5.2
kcoreaddons-devel-64bit-5.32.0-7.1
kcoreaddons-devel-debuginfo-64bit-5.32.0-7.1
libKF5Auth5-64bit-5.32.0-5.2
libKF5Auth5-debuginfo-64bit-5.32.0-5.2
libKF5CoreAddons5-64bit-5.32.0-7.1
libKF5CoreAddons5-debuginfo-64bit-5.32.0-7.1
libpolkit-qt5-1-1-64bit-0.112.0-4.1
libpolkit-qt5-1-1-debuginfo-64bit-0.112.0-4.1
libpolkit-qt5-1-devel-64bit-0.112.0-4.1
– SUSE Package Hub for SUSE Linux Enterprise 12 (aarch64 s390x):
kauth-debugsource-5.26.0-9.3
kauth-debugsource-5.32.0-5.2
kauth-devel-5.20.0-10.2
kauth-devel-5.26.0-9.3
kauth-devel-5.32.0-5.2
libKF5Auth5-5.20.0-10.2
libKF5Auth5-5.26.0-9.3
libKF5Auth5-5.32.0-5.2
libKF5Auth5-debuginfo-5.26.0-9.3
libKF5Auth5-debuginfo-5.32.0-5.2
– SUSE Package Hub for SUSE Linux Enterprise 12 (s390x x86_64):
kcoreaddons-5.26.0-5.4
kcoreaddons-debugsource-5.26.0-5.4
kcoreaddons-devel-5.26.0-5.4
kcoreaddons-devel-debuginfo-5.26.0-5.4
libKF5CoreAddons5-5.26.0-5.4
libKF5CoreAddons5-debuginfo-5.26.0-5.4
– SUSE Package Hub for SUSE Linux Enterprise 12 (noarch):
kcoreaddons-lang-5.20.0-8.1
kcoreaddons-lang-5.26.0-5.2
kcoreaddons-lang-5.26.0-5.4
kcoreaddons-lang-5.32.0-7.1
libKF5Auth5-lang-5.20.0-10.1
libKF5Auth5-lang-5.20.0-10.2
libKF5Auth5-lang-5.26.0-9.2
libKF5Auth5-lang-5.26.0-9.3
libKF5Auth5-lang-5.32.0-5.1
libKF5Auth5-lang-5.32.0-5.2
– SUSE Package Hub for SUSE Linux Enterprise 12 (s390x):
libpolkit-qt5-1-1-0.112.0-2.2
libpolkit-qt5-1-1-debuginfo-0.112.0-2.2
libpolkit-qt5-1-devel-0.112.0-2.2
polkit-qt5-1-debugsource-0.112.0-2.2
References:
https://www.suse.com/security/cve/CVE-2019-7443.html
https://bugzilla.suse.com/1124863
—
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org
For additional commands, e-mail: opensuse-security-announce+help@opensuse.org
openSUSE Security Update: Security update for kauth
______________________________________________________________________________
Announcement ID: openSUSE-SU-2019:0242-1
Rating: moderate
References: #1124863
Cross-References: CVE-2019-7443
Affected Products:
openSUSE Leap 42.3
openSUSE Leap 15.0
openSUSE Backports SLE-15
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
This update for kauth fixes the following issues:
Security issue fixed:
– CVE-2019-7443: Fixed an insecure handling of arguments in helpers by
removing the support of passing gui variants (bsc#1124863).
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
– openSUSE Leap 42.3:
zypper in -t patch openSUSE-2019-242=1
– openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-242=1
– openSUSE Backports SLE-15:
zypper in -t patch openSUSE-2019-242=1
Package List:
– openSUSE Leap 42.3 (i586 x86_64):
kauth-debugsource-5.32.0-3.3.1
kauth-devel-5.32.0-3.3.1
libKF5Auth5-5.32.0-3.3.1
libKF5Auth5-debuginfo-5.32.0-3.3.1
– openSUSE Leap 42.3 (x86_64):
kauth-devel-32bit-5.32.0-3.3.1
libKF5Auth5-32bit-5.32.0-3.3.1
libKF5Auth5-debuginfo-32bit-5.32.0-3.3.1
– openSUSE Leap 42.3 (noarch):
libKF5Auth5-lang-5.32.0-3.3.1
– openSUSE Leap 15.0 (i586 x86_64):
kauth-debugsource-5.45.0-lp150.3.3.1
kauth-devel-5.45.0-lp150.3.3.1
libKF5Auth5-5.45.0-lp150.3.3.1
libKF5Auth5-debuginfo-5.45.0-lp150.3.3.1
– openSUSE Leap 15.0 (noarch):
libKF5Auth5-lang-5.45.0-lp150.3.3.1
– openSUSE Leap 15.0 (x86_64):
kauth-devel-32bit-5.45.0-lp150.3.3.1
libKF5Auth5-32bit-5.45.0-lp150.3.3.1
libKF5Auth5-32bit-debuginfo-5.45.0-lp150.3.3.1
– openSUSE Backports SLE-15 (aarch64 ppc64le s390x x86_64):
kauth-debugsource-5.45.0-bp150.3.3.1
kauth-devel-5.45.0-bp150.3.3.1
libKF5Auth5-5.45.0-bp150.3.3.1
libKF5Auth5-debuginfo-5.45.0-bp150.3.3.1
– openSUSE Backports SLE-15 (aarch64_ilp32):
kauth-devel-64bit-5.45.0-bp150.3.3.1
libKF5Auth5-64bit-5.45.0-bp150.3.3.1
libKF5Auth5-64bit-debuginfo-5.45.0-bp150.3.3.1
– openSUSE Backports SLE-15 (noarch):
libKF5Auth5-lang-5.45.0-bp150.3.3.1
References:
https://www.suse.com/security/cve/CVE-2019-7443.html
https://bugzilla.suse.com/1124863
—
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org
For additional commands, e-mail: opensuse-security-announce+help@opensuse.org
| Autor | Josip Papratovic |
| Cert id | NCERT-REF-2019-02-0001-ADV |
| Cve | CERT-CVE-DUMMY |
| ID izvornika | CERT-ORIGID-DUMMY |
| Proizvod | CERT-DUMMY-PRODUCT |
| Izvor | Adobe |
