SUSE Security Update: Security update for novell-qtgui, novell-ui-base ______________________________________________________________________________
Announcement ID: SUSE-SU-2014:0847-1 Rating: important References: #872796 Cross-References: CVE-2014-0595 Affected Products: SUSE Linux Enterprise Desktop 11 SP3 ______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
Packages novell-ui-base and novell-qtgui were updated to prevent erroneous rights assignment when a user is granted 'File Scan' rights (F). In this case nwrights was assigning Supervisor (S) rights. (CVE-2014-0595)