SUSE-RU-2020:0603-1

Details

This update for permissions fixes the following issues:

CVE-2020-8013: Fixed an improper check which could have allowed the setting of unintented setuid bits (bsc#1163922).
Fixed handling of relative directory symlinks in chkstat.
Whitelisted postgres sticky directories (bsc#1123886).
Fixed regression where chkstat broke when /proc was not available (bsc#1160764, bsc#1160594)
Fixed capability handling when doing multiple permission changes at once (bsc#1161779)

Affected Packages

permissions

SUSE Linux Enterprise Desktop 12 SP4SUSE Linux Enterprise Server 12 SP4SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP4SUSE Linux Enterprise Server for SAP Applications 12 SP5

Fixed in:

20170707-3.21.1

References

REPORT

https://bugzilla.suse.com/1123886

REPORT

https://bugzilla.suse.com/1160594

REPORT

https://bugzilla.suse.com/1160764

REPORT

https://bugzilla.suse.com/1161779

REPORT

https://bugzilla.suse.com/1163922

WEB

https://www.suse.com/security/cve/CVE-2020-8013

ADVISORY

https://www.suse.com/support/update/announcement/-2020-603/suse-ru-20200603-1/