Login
Newsletter
Werbung

Sicherheit: Mehrere Probleme in google-compute-engine
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in google-compute-engine
ID: SUSE-SU-2020:1934-1
Distribution: SUSE
Plattformen: SUSE Linux Enterprise Module for Public Cloud 15-SP1, SUSE Linux Enterprise Module for Public Cloud 15-SP2
Datum: Mi, 15. Juli 2020, 18:30
Referenzen: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8903
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8933
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8907
Applikationen: google-compute-engine

Originalnachricht


SUSE Security Update: Security update for google-compute-engine
______________________________________________________________________________

Announcement ID: SUSE-SU-2020:1934-1
Rating: important
References: #1169978 #1173258
Cross-References: CVE-2020-8903 CVE-2020-8907 CVE-2020-8933

Affected Products:
SUSE Linux Enterprise Module for Public Cloud 15-SP2
SUSE Linux Enterprise Module for Public Cloud 15-SP1
______________________________________________________________________________

An update that fixes three vulnerabilities is now available.

Description:

This update for google-compute-engine fixes the following issues:

- Don't enable and start google-network-daemon.service when it's
already
installed (bsc#1169978)

+ Do not add the created user to the adm (CVE-2020-8903), docker
(CVE-2020-8907), or lxd (CVE-2020-8933) groups if they exist
(bsc#1173258)


Patch Instructions:

To install this SUSE Security Update use the SUSE recommended installation
methods
like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- SUSE Linux Enterprise Module for Public Cloud 15-SP2:

zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP2-2020-1934=1

- SUSE Linux Enterprise Module for Public Cloud 15-SP1:

zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP1-2020-1934=1



Package List:

- SUSE Linux Enterprise Module for Public Cloud 15-SP2 (aarch64 ppc64le
s390x x86_64):

google-compute-engine-debugsource-20190801-4.38.1
google-compute-engine-oslogin-20190801-4.38.1
google-compute-engine-oslogin-debuginfo-20190801-4.38.1

- SUSE Linux Enterprise Module for Public Cloud 15-SP2 (noarch):

google-compute-engine-init-20190801-4.38.1

- SUSE Linux Enterprise Module for Public Cloud 15-SP1 (aarch64 ppc64le
s390x x86_64):

google-compute-engine-debugsource-20190801-4.38.1
google-compute-engine-oslogin-20190801-4.38.1
google-compute-engine-oslogin-debuginfo-20190801-4.38.1

- SUSE Linux Enterprise Module for Public Cloud 15-SP1 (noarch):

google-compute-engine-init-20190801-4.38.1


References:

https://www.suse.com/security/cve/CVE-2020-8903.html
https://www.suse.com/security/cve/CVE-2020-8907.html
https://www.suse.com/security/cve/CVE-2020-8933.html
https://bugzilla.suse.com/1169978
https://bugzilla.suse.com/1173258

_______________________________________________
sle-security-updates mailing list
sle-security-updates@lists.suse.com
http://lists.suse.com/mailman/listinfo/sle-security-updates
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung