|Category:||SuSE Local Security Checks|
|Title:||SuSE Update for netatalk openSUSE-SU-2018:4287-1 (netatalk)|
|Summary:||The remote host is missing an update for the 'netatalk'; package(s) announced via the openSUSE-SU-2018:4287_1 advisory.|
The remote host is missing an update for the 'netatalk'
package(s) announced via the openSUSE-SU-2018:4287_1 advisory.
This update for netatalk fixes the following issues:
Security issue fixed:
- CVE-2018-1160 Fixed a missing bounds check in the handling of the DSI
OPEN SESSION request, which allowed an unauthenticated to overwrite
memory with data of their choice leading for arbitrary code execution
with root privileges. (bsc#1119540)
To install this openSUSE Security Update use the SUSE recommended
like YaST online_update or 'zypper patch'.
Alternatively you can run the command listed for your product:
- openSUSE Leap 42.3:
zypper in -t patch openSUSE-2018-1614=1
netatalk on openSUSE Leap 42.3.
Please install the updated package(s).
Common Vulnerability Exposure (CVE) ID: CVE-2018-1160|
Debian Security Information: DSA-4356 (Google Search)
BugTraq ID: 106301
|Copyright||Copyright (C) 2018 Greenbone Networks GmbH|
|This is only one of 71225 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.