admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2020-06-29 13:01:30 +00:00
parent b480cf987e
commit 00e7520959
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
2 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
2019/3xxx/CVE-2019-3681.json
View File

@ -1,6 +1,6 @@
{
"CVE_data_meta": {
"ASSIGNER": "security@suse.de",
"ASSIGNER": "security@suse.com",
"DATE_PUBLIC": "2020-05-27T00:00:00.000Z",
"ID": "CVE-2019-3681",
"STATE": "PUBLIC",
@ -99,7 +99,7 @@
"description_data": [
{
"lang": "eng",
"value": "A External Control of File Name or Path vulnerability in osc of SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Software Development Kit 12-SP5, SUSE Linux Enterprise Software Development Kit 12-SP4; openSUSE Leap 15.1, openSUSE Factory allowed remote attackers that can change downloaded packages to overwrite arbitrary files.\nThis issue affects:\nSUSE Linux Enterprise Module for Development Tools 15\nosc versions prior to 0.169.1-3.20.1.\nSUSE Linux Enterprise Software Development Kit 12-SP5\nosc versions prior to 0.162.1-15.9.1.\nSUSE Linux Enterprise Software Development Kit 12-SP4\nosc versions prior to 0.162.1-15.9.1.\nopenSUSE Leap 15.1\nosc versions prior to 0.169.1-lp151.2.15.1.\nopenSUSE Factory\nosc versions prior to 0.169.0 ."
"value": "A External Control of File Name or Path vulnerability in osc of SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Software Development Kit 12-SP5, SUSE Linux Enterprise Software Development Kit 12-SP4; openSUSE Leap 15.1, openSUSE Factory allowed remote attackers that can change downloaded packages to overwrite arbitrary files. This issue affects: SUSE Linux Enterprise Module for Development Tools 15 osc versions prior to 0.169.1-3.20.1. SUSE Linux Enterprise Software Development Kit 12-SP5 osc versions prior to 0.162.1-15.9.1. SUSE Linux Enterprise Software Development Kit 12-SP4 osc versions prior to 0.162.1-15.9.1. openSUSE Leap 15.1 osc versions prior to 0.169.1-lp151.2.15.1. openSUSE Factory osc versions prior to 0.169.0 ."
}
]
},

4
2020/8xxx/CVE-2020-8014.json
View File

@ -1,6 +1,6 @@
{
"CVE_data_meta": {
"ASSIGNER": "security@suse.de",
"ASSIGNER": "security@suse.com",
"DATE_PUBLIC": "2020-05-19T00:00:00.000Z",
"ID": "CVE-2020-8014",
"STATE": "PUBLIC",
@ -56,7 +56,7 @@
"description_data": [
{
"lang": "eng",
"value": "A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of kopano-spamd of openSUSE Leap 15.1, openSUSE Tumbleweed allowed local attackers with the privileges of the kopano user to escalate to root.\nThis issue affects:\nopenSUSE Leap 15.1\nkopano-spamd versions prior to 10.0.5-lp151.4.1.\nopenSUSE Tumbleweed\nkopano-spamd versions prior to 10.0.5-1.1."
"value": "A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of kopano-spamd of openSUSE Leap 15.1, openSUSE Tumbleweed allowed local attackers with the privileges of the kopano user to escalate to root. This issue affects: openSUSE Leap 15.1 kopano-spamd versions prior to 10.0.5-lp151.4.1. openSUSE Tumbleweed kopano-spamd versions prior to 10.0.5-1.1."
}
]
},