Security update for openwsman
This update for openwsman fixes the following issues:
Security issues fixed:
- CVE-2019-3816: Fixed a vulnerability in openwsmand deamon which could lead to arbitary file disclosure (bsc#1122623).
- CVE-2019-3833: Fixed a vulnerability in process_connection() which could allow an attacker to trigger an infinite
loop which leads to Denial of Service (bsc#1122623).
Other issues addressed:
- Directory listing without authentication fixed (bsc#1092206).
This update was imported from the SUSE:SLE-15:Update update project.
- Submitted by Adam Majer (adamm)
Fixed bugs
bnc#1092206
openwsman Web Directories Listable Vulnerability
bnc#1122623
VUL-0: CVE-2019-3816, CVE-2019-3833: openwsman: Information disclosure and denial of service in openwsman