rpm package
suse/permissions&distro=SUSE Linux Enterprise Server 11 SP4-LTSS
pkg:rpm/suse/permissions&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-8013 | — | < 2013.1.7-0.6.12.1 | 2013.1.7-0.6.12.1 | Mar 2, 2020 | A UNIX Symbolic Link (Symlink) Following vulnerability in chkstat of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 11 set permissions intended for specific binaries on other binaries because it erroneously followed symlinks. The sy | ||
| CVE-2019-3690 | — | < 2013.1.7-0.6.5.1 | 2013.1.7-0.6.5.1 | Dec 5, 2019 | The chkstat tool in the permissions package followed symlinks before commit a9e1d26cd49ef9ee0c2060c859321128a6dd4230 (please also check the additional hardenings after this fix). This allowed local attackers with control over a path that is traversed by chkstat to escalate privil |
- CVE-2020-8013Mar 2, 2020affected < 2013.1.7-0.6.12.1fixed 2013.1.7-0.6.12.1
A UNIX Symbolic Link (Symlink) Following vulnerability in chkstat of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 11 set permissions intended for specific binaries on other binaries because it erroneously followed symlinks. The sy
- CVE-2019-3690Dec 5, 2019affected < 2013.1.7-0.6.5.1fixed 2013.1.7-0.6.5.1
The chkstat tool in the permissions package followed symlinks before commit a9e1d26cd49ef9ee0c2060c859321128a6dd4230 (please also check the additional hardenings after this fix). This allowed local attackers with control over a path that is traversed by chkstat to escalate privil