drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in setroubleshoot
Name: |
Ausführen beliebiger Kommandos in setroubleshoot |
|
ID: |
FEDORA-2015-4792 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 22 |
|
Datum: |
Mi, 1. April 2015, 06:30 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1815 |
|
Applikationen: |
setroubleshoot |
|
Originalnachricht |
Name : setroubleshoot Product : Fedora 22 Version : 3.2.22 Release : 1.fc22 URL : https://fedorahosted.org/setroubleshoot Summary : Helps troubleshoot SELinux problems Description : setroubleshoot GUI. Application that allows you to view setroubleshoot-server messages. Provides tools to help diagnose SELinux problems. When AVC messages are generated an alert can be generated that will give information about the problem and help track its resolution. Alerts can be configured to user preference. The same tools can be run on existing log files.
------------------------------------------------------------------------------- - Update Information:
Security fix for CVE-2015-1815 ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #1203352 - CVE-2015-1815 setroubleshoot: command injection via crafted file name https://bugzilla.redhat.com/show_bug.cgi?id=1203352 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update setroubleshoot' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|