admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2020-06-29 12:01:27 +00:00
parent 73d76c5d4b
commit dc95eafd6b
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
2 changed files with 7 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2020/10xxx/CVE-2020-10753.json
View File

@ -48,6 +48,11 @@
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10753",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10753",
"refsource": "CONFIRM"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2020:0898",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00062.html"
}
]
},

4
2020/8xxx/CVE-2020-8019.json
View File

@ -1,6 +1,6 @@
{
"CVE_data_meta": {
"ASSIGNER": "security@suse.de",
"ASSIGNER": "security@suse.com",
"DATE_PUBLIC": "2020-06-29T00:00:00.000Z",
"ID": "CVE-2020-8019",
"STATE": "PUBLIC",
@ -135,7 +135,7 @@
"description_data": [
{
"lang": "eng",
"value": "A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of syslog-ng of SUSE Linux Enterprise Debuginfo 11-SP3, SUSE Linux Enterprise Debuginfo 11-SP4, SUSE Linux Enterprise Module for Legacy Software 12, SUSE Linux Enterprise Point of Sale 11-SP3, SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Linux Enterprise Server for SAP 12-SP1; openSUSE Backports SLE-15-SP1, openSUSE Leap 15.1 allowed local attackers controlling the user news to escalate their privileges to root.\nThis issue affects:\nSUSE Linux Enterprise Debuginfo 11-SP3\nsyslog-ng versions prior to 2.0.9-27.34.40.5.1.\nSUSE Linux Enterprise Debuginfo 11-SP4\nsyslog-ng versions prior to 2.0.9-27.34.40.5.1.\nSUSE Linux Enterprise Module for Legacy Software 12\nsyslog-ng versions prior to 3.6.4-12.8.1.\nSUSE Linux Enterprise Point of Sale 11-SP3\nsyslog-ng versions prior to 2.0.9-27.34.40.5.1.\nSUSE Linux Enterprise Server 11-SP4-LTSS\nsyslog-ng versions prior to 2.0.9-27.34.40.5.1.\nSUSE Linux Enterprise Server for SAP 12-SP1\nsyslog-ng versions prior to 3.6.4-12.8.1.\nopenSUSE Backports SLE-15-SP1\nsyslog-ng versions prior to 3.19.1-bp151.4.6.1.\nopenSUSE Leap 15.1\nsyslog-ng versions prior to 3.19.1-lp151.3.6.1."
"value": "A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of syslog-ng of SUSE Linux Enterprise Debuginfo 11-SP3, SUSE Linux Enterprise Debuginfo 11-SP4, SUSE Linux Enterprise Module for Legacy Software 12, SUSE Linux Enterprise Point of Sale 11-SP3, SUSE Linux Enterprise Server 11-SP4-LTSS, SUSE Linux Enterprise Server for SAP 12-SP1; openSUSE Backports SLE-15-SP1, openSUSE Leap 15.1 allowed local attackers controlling the user news to escalate their privileges to root. This issue affects: SUSE Linux Enterprise Debuginfo 11-SP3 syslog-ng versions prior to 2.0.9-27.34.40.5.1. SUSE Linux Enterprise Debuginfo 11-SP4 syslog-ng versions prior to 2.0.9-27.34.40.5.1. SUSE Linux Enterprise Module for Legacy Software 12 syslog-ng versions prior to 3.6.4-12.8.1. SUSE Linux Enterprise Point of Sale 11-SP3 syslog-ng versions prior to 2.0.9-27.34.40.5.1. SUSE Linux Enterprise Server 11-SP4-LTSS syslog-ng versions prior to 2.0.9-27.34.40.5.1. SUSE Linux Enterprise Server for SAP 12-SP1 syslog-ng versions prior to 3.6.4-12.8.1. openSUSE Backports SLE-15-SP1 syslog-ng versions prior to 3.19.1-bp151.4.6.1. openSUSE Leap 15.1 syslog-ng versions prior to 3.19.1-lp151.3.6.1."
}
]
},