You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa lxc

Sigurnosni nedostatak programskog paketa lxc

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LSU

openSUSE Security Update: Security update for lxc
______________________________________________________________________________

Announcement ID: openSUSE-SU-2019:1230-1
Rating: moderate
References: #988348
Cross-References: CVE-2018-6556
Affected Products:
openSUSE Backports SLE-15
______________________________________________________________________________

An update that fixes one vulnerability is now available.

Description:

This update for lxc fixes the following issues:

The following security vulnerability was fixed:

– CVE-2018-6556: Fixed an information leak and possible open() side
effects to regular users via lxc-user-nic (boo#988348)

This update was imported from the openSUSE:Leap:15.0:Update update project.

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

– openSUSE Backports SLE-15:

zypper in -t patch openSUSE-2019-1230=1

Package List:

– openSUSE Backports SLE-15 (aarch64 ppc64le s390x x86_64):

liblxc-devel-2.0.9-bp150.5.6.1
liblxc1-2.0.9-bp150.5.6.1
lxc-2.0.9-bp150.5.6.1

References:

https://www.suse.com/security/cve/CVE-2018-6556.html
https://bugzilla.suse.com/988348


To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@opensuse.org
For additional commands, e-mail: opensuse-security-announce+help@opensuse.org

AutorJosip Papratovic
Cert idNCERT-REF-2019-04-0001-ADV
CveCERT-CVE-DUMMY
ID izvornikaCERT-ORIGID-DUMMY
ProizvodCERT-DUMMY-PRODUCT
IzvorAdobe
Top
More in Preporuke
Sigurnosni nedostatak programske biblioteke libseccomp

Otkriven je sigurnosni nedostatak programske biblioteke libseccomp za operacijski sustav Gentoo. Otkriveni nedostatak potencijalnim napadačima omogućuje stjecanje uvećanih ovlasti. Savjetuje...

Close