SUSE-SU-2019:13976-1 -- SLES supportutilsID: oval:org.secpod.oval:def:89043486 | Date: (C)2021-03-05 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for supportutils fixes the following issues: Security vulnerabilities fixed: - CVE-2018-19636: Local root exploit via inclusion of attacker controlled shell script - CVE-2018-19640: Users can kill arbitrary processes - CVE-2018-19638: User can overwrite arbitrary log files in support tar - CVE-2018-19639: Code execution if run with -v
Platform: |
SUSE Linux Enterprise Server 11 SP4 |