rpm package
suse/rear1172a&distro=SUSE Linux Enterprise High Availability Extension 12 SP5
pkg:rpm/suse/rear1172a&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2012%20SP5
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-23301 | Med | 5.5 | < 1.17.2.a-5.3.1 | 1.17.2.a-5.3.1 | Jan 12, 2024 | Relax-and-Recover (aka ReaR) through 2.7 creates a world-readable initrd when using GRUB_RESCUE=y. This allows local attackers to gain access to system secrets otherwise only readable by root. |
- affected < 1.17.2.a-5.3.1fixed 1.17.2.a-5.3.1
Relax-and-Recover (aka ReaR) through 2.7 creates a world-readable initrd when using GRUB_RESCUE=y. This allows local attackers to gain access to system secrets otherwise only readable by root.