openSUSE-RU-2020:1700-1: moderate: Recommended update for hylafax+
openSUSE Recommended Update: Recommended update for hylafax+ ______________________________________________________________________________ Announcement ID: openSUSE-RU-2020:1700-1 Rating: moderate References: #1172731 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for hylafax+ fixes the following issues: Changes in hylafax+: - CVE-2020-8024: Fixed problematic permissions that allowed escalation from uucp to other users (boo#1172731) Patch Instructions: To install this openSUSE Recommended Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2020-1700=1 - openSUSE Leap 15.1: zypper in -t patch openSUSE-2020-1700=1 Package List: - openSUSE Leap 15.2 (x86_64): hylafax+-7.0.3-lp152.3.9.1 hylafax+-client-7.0.3-lp152.3.9.1 hylafax+-client-debuginfo-7.0.3-lp152.3.9.1 hylafax+-debuginfo-7.0.3-lp152.3.9.1 hylafax+-debugsource-7.0.3-lp152.3.9.1 libfaxutil7_0_3-7.0.3-lp152.3.9.1 libfaxutil7_0_3-debuginfo-7.0.3-lp152.3.9.1 - openSUSE Leap 15.1 (x86_64): hylafax+-7.0.3-lp151.4.9.1 hylafax+-client-7.0.3-lp151.4.9.1 hylafax+-client-debuginfo-7.0.3-lp151.4.9.1 hylafax+-debuginfo-7.0.3-lp151.4.9.1 hylafax+-debugsource-7.0.3-lp151.4.9.1 libfaxutil7_0_3-7.0.3-lp151.4.9.1 libfaxutil7_0_3-debuginfo-7.0.3-lp151.4.9.1 References: https://www.suse.com/security/cve/CVE-2020-8024.html https://bugzilla.suse.com/1172731
participants (1)
-
maintenance@opensuse.org