SUSE-RU-2020:0603-1

See a problem?
Please try reporting it to the source first.
Source
https://www.suse.com/support/update/announcement/2020/suse-ru-20200603-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-RU-2020:0603-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-RU-2020:0603-1
Upstream
Related
Published
2020-03-06T10:01:04Z
Modified
2026-02-04T04:31:20.487490Z
Summary
Recommended update for permissions
Details

This update for permissions fixes the following issues:

  • CVE-2020-8013: Fixed an improper check which could have allowed the setting of unintented setuid bits (bsc#1163922).
  • Fixed handling of relative directory symlinks in chkstat.
  • Whitelisted postgres sticky directories (bsc#1123886).
  • Fixed regression where chkstat broke when /proc was not available (bsc#1160764, bsc#1160594)
  • Fixed capability handling when doing multiple permission changes at once (bsc#1161779)
References

Affected packages

SUSE:Linux Enterprise Desktop 12 SP4
permissions

Package

Name
permissions
Purl
pkg:rpm/suse/permissions&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20170707-3.21.1

Ecosystem specific 

{
    "binaries": [
        {
            "permissions": "20170707-3.21.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-RU-2020:0603-1.json"
SUSE:Linux Enterprise Server 12 SP4
permissions

Package

Name
permissions
Purl
pkg:rpm/suse/permissions&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20170707-3.21.1

Ecosystem specific 

{
    "binaries": [
        {
            "permissions": "20170707-3.21.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-RU-2020:0603-1.json"
SUSE:Linux Enterprise Server 12 SP5
permissions

Package

Name
permissions
Purl
pkg:rpm/suse/permissions&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20170707-3.21.1

Ecosystem specific 

{
    "binaries": [
        {
            "permissions": "20170707-3.21.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-RU-2020:0603-1.json"
SUSE:Linux Enterprise Server for SAP Applications 12 SP4
permissions

Package

Name
permissions
Purl
pkg:rpm/suse/permissions&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20170707-3.21.1

Ecosystem specific 

{
    "binaries": [
        {
            "permissions": "20170707-3.21.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-RU-2020:0603-1.json"
SUSE:Linux Enterprise Server for SAP Applications 12 SP5
permissions

Package

Name
permissions
Purl
pkg:rpm/suse/permissions&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20170707-3.21.1

Ecosystem specific 

{
    "binaries": [
        {
            "permissions": "20170707-3.21.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-RU-2020:0603-1.json"