Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

SUSE: 2022:2866-1 Moderate: Systemd-Presets-Common Accessibility Fix

suse
Calendar Grey August 22, 2022
Dist Suse Esm H88
SUSE Security Update: Resolutions for systemd-presets-common-SUSE addressing accessibility problems within virtual machines and configuration mistakes.
An update that solves one vulnerability and has one errata is now available

Summary

This update for systemd-presets-common-SUSE fixes the following issues: - CVE-2022-1706: Fixed accessible configs from unprivileged containers in VMs running on VMware products (bsc#1199524). The following non-security bugs were fixed: - Modify branding-preset-states to fix systemd-presets-common-SUSE not enabling new user systemd service preset configuration just as it handles system service presets. By passing an (optional) second parameter "user", the save/apply-changes commands now work with user services instead of system ones (bsc#1200485) - Add the wireplumber user service preset to enable it by default in SLE15-SP4 where it replaced pipewire-media-session, but keep pipewire-media-session preset so we don't have to branch the systemd-presets-common-SUSE package for SP4 (bsc#1200485)

Topics%20covered

Topics Covered

security advisory moderate SUSE accessibility fix systemd service

References

#1199524 #1200485

Cross- CVE-2022-1706

CVSS scores:

CVE-2022-1706 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVE-2022-1706 (SUSE): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products:

SUSE Linux Enterprise Desktop 15-SP3

SUSE Linux Enterprise Desktop 15-SP4

SUSE Linux Enterprise High Performance Computing 15-SP3

SUSE Linux Enterprise High Performance Computing 15-SP4

SUSE Linux Enterprise Micro 5.1

SUSE Linux Enterprise Micro 5.2

SUSE Linux Enterprise Module for Basesystem 15-SP3

SUSE Linux Enterprise Module for Basesystem 15-SP4

SUSE Linux Enterprise Server 15-SP3

SUSE Linux Enterprise Server 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15-SP3

SUSE Linux Enterprise Server...

Read the Full Advisory

Announcement ID: SUSE-SU-2022:2866-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory moderate SUSE accessibility fix systemd service

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here