Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Step:15-SP2
patchinfo.13946
_patchinfo
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo.13946
<patchinfo incident="13946"> <issue tracker="bnc" id="1148788">VUL-0: CVE-2019-3687: permissions: easy profile allows everyone execute dumpcap and read all network traffic</issue> <issue tracker="bnc" id="1160594">chkstat fix in permissions package breaks installation-images builds (for OES2018SP2)</issue> <issue tracker="bnc" id="1160764">chkstat writes junk to output</issue> <issue tracker="bnc" id="1161779">chkstat: capability handling broken when doing multiple changes to file at once</issue> <issue tracker="cve" id="2019-3687"/> <issue tracker="bnc" id="1163922">VUL-0: EMBARGOED: CVE-2020-8013: permissions: chkstat sets unintended setuid/capabilities for mrsh and wodim</issue> <issue tracker="cve" id="2020-8013"/> <packager>mgerstner</packager> <rating>moderate</rating> <category>security</category> <summary>Security update for permissions</summary> <description>This update for permissions fixes the following issues: Security issues fixed: - CVE-2019-3687: Fixed a privilege escalation which could allow a local user to read network traffic if wireshark is installed (bsc#1148788) - CVE-2020-8013: Fixed an issue where chkstat set unintended setuid/capabilities for mrsh and wodim (bsc#1163922). Non-security issues fixed: - Fixed a regression where chkstat breaks without /proc available (bsc#1160764, bsc#1160594). - Fixed capability handling when doing multiple permission changes at once (bsc#1161779). </description> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor