Security Advisory

CVE-2019-18898

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-01-23 14:05:14

Last updated 2024-09-16 18:24:53

Assigner suse

State PUBLISHED

Description

UNIX Symbolic Link (Symlink) Following vulnerability in the trousers package of SUSE Linux Enterprise Server 15 SP1; openSUSE Factory allowed local attackers escalate privileges from user tss to root. This issue affects: SUSE Linux Enterprise Server 15 SP1 trousers versions prior to 0.3.14-6.3.1. openSUSE Factory trousers versions prior to 0.3.14-7.1.

← Browse all CVEs View on cve.org ↗