What Are You Looking For?

Sign Up
   openSUSE Security Update: ppc64-diag: fix for tmp races and information disclosure
______________________________________________________________________________

Announcement ID:    openSUSE-SU-2014:0953-2
Rating:             important
References:         #882667 
Cross-References:   CVE-2014-4038 CVE-2014-4039
Affected Products:
                    openSUSE 12.3
______________________________________________________________________________

   An update that fixes two vulnerabilities is now available.

Description:

   ppc64-diag was updated to fix tmp race issues (CVE-2014-4038) and a file
   disclosure problem in snapshot tarball generation (CVE-2014-4039).


Patch Instructions:

   To install this openSUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - openSUSE 12.3:

      zypper in -t patch openSUSE-2014-

   To bring your system up-to-date, use "zypper patch".


Package List:

   - openSUSE 12.3 (ppc ppc64):

      ppc64-diag-2.6.0-2.4.1
      ppc64-diag-debuginfo-2.6.0-2.4.1
      ppc64-diag-debugsource-2.6.0-2.4.1


References:

   https://support.novell.com/security/cve/CVE-2014-4038.html
   https://support.novell.com/security/cve/CVE-2014-4039.html
   https://bugzilla.novell.com/882667

openSUSE: 2014:0953-2: important: ppc64-diag

July 31, 2014
An update that fixes two vulnerabilities is now available

Description

ppc64-diag was updated to fix tmp race issues (CVE-2014-4038) and a file disclosure problem in snapshot tarball generation (CVE-2014-4039).

 

Patch

Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 12.3: zypper in -t patch openSUSE-2014- To bring your system up-to-date, use "zypper patch".


Package List

- openSUSE 12.3 (ppc ppc64): ppc64-diag-2.6.0-2.4.1 ppc64-diag-debuginfo-2.6.0-2.4.1 ppc64-diag-debugsource-2.6.0-2.4.1


References

https://support.novell.com/security/cve/CVE-2014-4038.html https://support.novell.com/security/cve/CVE-2014-4039.html https://bugzilla.novell.com/882667


Severity
Announcement ID: openSUSE-SU-2014:0953-2
Rating: important
Affected Products: openSUSE 12.3 .

Related News

Nitrux 3.2.0 Linux Distro Released with Enhanced Security and New Features

Nov 28, 2023

Widespread Xorg DoS, Privilege Escalation Vulns Fixed

Nov 13, 2023

Linux 6.7 Introduces "make hardening.config" To Help Build A Hardened Kernel

Nov 5, 2023

Linux 6.6 Brings New Scheduler, File Sharing and Security

Nov 2, 2023

News

Advisories

HOWTOs

Features

Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024

About Us

Powered By

Footer Logo