openSUSE Security Update : rust (openSUSE-2018-1279)
Medium Nessus Plugin ID 118449
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for rust fixes the following issues :
- CVE-2018-1000622: rustdoc loads plugins from world-writable directory allowing for arbitrary code execution This patch consists of requiring `--plugin-path` to be passed whenever `--plugin` is passed Note that rustdoc plugins will be removed entirely on 1.28.0 (bsc#1100691).
This update was imported from the SUSE:SLE-15:Update update project.
SolutionUpdate the affected rust packages.