Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 433
Alerts This Week
Warning Icon 1 433

Debian: DSA-4461-1 Moderate: Zookeeper Information Disclosure

debian
Calendar Grey June 11, 2019
Debian Logo
Enhance your Zookeeper installations by updating the packages to resolve the ACL permission checks, ensuring improved security protocols.
Harrison Neil discovered that the getACL() command in Zookeeper, a service for maintaining configuration information, did not validate permissions, which could result in informatio...

Summary

Harrison Neil discovered that the getACL() command in Zookeeper, a
service for maintaining configuration information, did not validate
permissions, which could result in information disclosure.

For the stable distribution (stretch), this problem has been fixed in
version 3.4.9-3+deb9u2.

We recommend that you upgrade your zookeeper packages.

For the detailed security status of zookeeper please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/source-package/zookeeper

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Severity
important
Lowest
Low
Medium
High
Critical

Package: zookeeper
CVE ID: CVE-2019-0201

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.