Bug ID | 1187671 |
---|---|
Summary | CVE-2021-29133 information disclosure due to setuid binaries |
Classification | openSUSE |
Product | openSUSE Distribution |
Version | Leap 15.3 |
Hardware | Other |
OS | Other |
Status | NEW |
Severity | Normal |
Priority | P5 - None |
Component | Network |
Assignee | screening-team-bugs@suse.de |
Reporter | rpm@fthiessen.de |
QA Contact | qa-bugs@suse.de |
Found By | --- |
Blocker | --- |
Lack of verification in haserl, before 0.9.36 allows local users to read the contents of any file on the filesystem. Upstream: https://gitlab.alpinelinux.org/alpine/aports/-/issues/12539 SLE 15 SPx and Leap 15.2 are vulnerable.