openSUSE Security Update : syncthing / syncthing-gtk (openSUSE-2017-30)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

This updates syncthing to version 0.14.16 and fixes the following
issues :

The following security issue was fixed :

- A remote device that was already accepted by syncthing
could perform arbitrary reads and writes outside of the
configured directories (boo#1016161) This update also
contains a number of upstream improvements in the
0.14.14 version, including :

- improved performance

- UI improvements

- prevention of data inconsistencies syncthing-gtk was
updated to 0.9.2.3 to fix reading the configuration with
non-ASCII locales. The new version is compatible with
syncthing 0.14.x and includes various improvement and
fixes.

See also :

https://bugzilla.opensuse.org/show_bug.cgi?id=1016161

Solution :

Update the affected syncthing / syncthing-gtk packages.

Risk factor :

Medium

Family: SuSE Local Security Checks

Nessus Plugin ID: 96375 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now