Fedora 20: FEDORA-2015-4833 Moderate: Setroubleshoot Command Injection

fedora

April 8, 2015

Security fix for CVE-2015-1815

Summary

setroubleshoot GUI. Application that allows you to view setroubleshoot-server

messages.

Provides tools to help diagnose SELinux problems. When AVC messages

are generated an alert can be generated that will give information

about the problem and help track its resolution. Alerts can be configured

to user preference. The same tools can be run on existing log files.

Update Information:

Security fix for CVE-2015-1815

Topics Covered

security advisory moderate update Fedora command injection setroubleshoot CVE-2015-1815

Change Log

* Thu Mar 26 2015 Petr Lautrbach 3.2.17-2 - Fix get_rpm_nvr_*_temporary functions - CVE-2015-1815 (#1203352) * Mon Jan 20 2014 Dan Walsh - 3.2.17-1 - Fix unicode settings * Tue Jan 7 2014 Dan Walsh - 3.2.16-2 - Remove requires for notify-python and yum * Thu Jan 2 2014 Dan Walsh - 3.2.16-1 - Don't error out on no policy installed - Update translations. * Thu Jan 2 2014 Dan Walsh - 3.2.15-2 - Eliminate requirement on service script. * Tue Dec 3 2013 Dan Walsh - 3.2.15-1 - Update Lanquages - Use setup.py in Makefile for setroubleshoot dir

References

[ 1 ] Bug #1203352 - CVE-2015-1815 setroubleshoot: command injection via crafted file name https://bugzilla.redhat.com/show_bug.cgi?id=1203352

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update setroubleshoot' at the command line. For more information, refer to "Managing Software with yum", available at .

Name: setroubleshoot

Product: Fedora 20

Version: 3.2.17

Release: 2.fc20

URL: https://fedoraproject.org/wiki/Infrastructure/Fedorahosted-retirement

Summary: Helps troubleshoot SELinux problems

Topics Covered

security advisory moderate update Fedora command injection setroubleshoot CVE-2015-1815

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 20: FEDORA-2015-4833 Moderate: Setroubleshoot Command Injection

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

Fedora 20: FEDORA-2015-4833 Moderate: Setroubleshoot Command Injection

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!