Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 501
Alerts This Week
Warning Icon 1 501

openSUSE: 2018:2801-2 Moderate: obs-service-refresh_patches Risk Management

opensuse
Calendar Grey September 22, 2018
Dist Opensuse Esm H88
A new update has been released for openSUSE users targeting a moderate vulnerability within obs-service-refresh_patches.
An update that contains security fixes can now be installed.

Description

This update for obs-service-refresh_patches fixes the following security

issue:

- An attacker creating a specially formated archive could have tricked the

service in deleting directories that shouldn't be deleted (boo#1108189)

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Backports SLE-15:

zypper in -t patch openSUSE-2018-1029=1

Package List

- openSUSE Backports SLE-15 (noarch):

obs-service-refresh_patches-0.3.9+git.1537184752.d624424-bp150.3.3.1

References

https://bugzilla.suse.com/1108189

--

Announcement ID: openSUSE-SU-2018:2801-2
Rating: moderate
Affected Products: openSUSE Backports SLE-15

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.