openSUSE Security Update : rust (openSUSE-2018-1279)
Medium Nessus Plugin ID 118449
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for rust fixes the following issues :
- CVE-2018-1000622: rustdoc loads plugins from
world-writable directory allowing for arbitrary code
execution This patch consists of requiring
`--plugin-path` to be passed whenever `--plugin` is
passed Note that rustdoc plugins will be removed
entirely on 1.28.0 (bsc#1100691).
This update was imported from the SUSE:SLE-15:Update update project.
SolutionUpdate the affected rust packages.