VYPR

rpm package

suse/google-compute-engine&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP2

pkg:rpm/suse/google-compute-engine&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2

Vulnerabilities (3)

  • CVE-2020-8933Jun 22, 2020
    affected < 20190801-4.38.1fixed 20190801-4.38.1

    A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using the membership to the "lxd" group, an attacker can attach host devices and fil

  • CVE-2020-8907Jun 22, 2020
    affected < 20190801-4.38.1fixed 20190801-4.38.1

    A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership to the "docker" group, an attacker with this role is able to

  • CVE-2020-8903Jun 22, 2020
    affected < 20190801-4.38.1fixed 20190801-4.38.1

    A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership to the "adm" group, users with this role are able to read the