| Bug ID | 1187671 |
|---|---|
| Summary | CVE-2021-29133 information disclosure due to setuid binaries |
| Classification | openSUSE |
| Product | openSUSE Distribution |
| Version | Leap 15.3 |
| Hardware | Other |
| OS | Other |
| Status | NEW |
| Severity | Normal |
| Priority | P5 - None |
| Component | Network |
| Assignee | screening-team-bugs@suse.de |
| Reporter | rpm@fthiessen.de |
| QA Contact | qa-bugs@suse.de |
| Found By | --- |
| Blocker | --- |
Lack of verification in haserl, before 0.9.36 allows local users to read the contents of any file on the filesystem. Upstream: https://gitlab.alpinelinux.org/alpine/aports/-/issues/12539 SLE 15 SPx and Leap 15.2 are vulnerable.