openSUSE Security Update : util-linux and shadow (openSUSE-2019-2175)

medium Nessus Plugin ID 129341

Language:

Synopsis

The remote openSUSE host is missing a security update.

Description

This update for util-linux and shadow fixes the following issues :

util-linux :

- Fixed an issue where PATH settings in /etc/default/su being ignored (bsc#1121197)

- Prevent outdated pam files (bsc#1082293).

- Do not trim read-only volumes (bsc#1106214).

- Integrate pam_keyinit pam module to login (bsc#1081947).

- Perform one-time reset of /etc/default/su (bsc#1121197).

- Fix problems in reading of login.defs values (bsc#1121197)

- libmount: To prevent incorrect behavior, recognize more pseudofs and netfs (bsc#1122417).

- raw.service: Add RemainAfterExit=yes (bsc#1135534).

- agetty: Return previous response of agetty for special characters (bsc#1085196, bsc#1125886)

- Fix /etc/default/su comments and create /etc/default/runuser (bsc#1121197).

shadow :

- Fixed an issue where PATH settings in /etc/default/su being ignored (bsc#1121197)

- Hardening for su wrappers (bsc#353876)

This update was imported from the SUSE:SLE-15:Update update project.

Solution

Update the affected util-linux and shadow packages.

See Also

https://bugzilla.opensuse.org/show_bug.cgi?id=1081947

https://bugzilla.opensuse.org/show_bug.cgi?id=1082293

https://bugzilla.opensuse.org/show_bug.cgi?id=1085196

https://bugzilla.opensuse.org/show_bug.cgi?id=1106214

https://bugzilla.opensuse.org/show_bug.cgi?id=1121197

https://bugzilla.opensuse.org/show_bug.cgi?id=1122417

https://bugzilla.opensuse.org/show_bug.cgi?id=1125886

https://bugzilla.opensuse.org/show_bug.cgi?id=1135534

https://bugzilla.opensuse.org/show_bug.cgi?id=1135708

https://bugzilla.opensuse.org/show_bug.cgi?id=353876

Plugin Details

Severity: Medium

ID: 129341

File Name: openSUSE-2019-2175.nasl

Version: 1.3

Type: Local

Agent: unix

Published: 9/25/2019

Updated: 1/19/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Continuous Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security, Nessus

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:libuuid1, cpe:/o:novell:opensuse:15.0, p-cpe:/a:novell:opensuse:libuuid1-32bit-debuginfo, p-cpe:/a:novell:opensuse:util-linux-debugsource, p-cpe:/a:novell:opensuse:libmount1-debuginfo, p-cpe:/a:novell:opensuse:libmount1-32bit-debuginfo, p-cpe:/a:novell:opensuse:libmount1-32bit, p-cpe:/a:novell:opensuse:libblkid1, p-cpe:/a:novell:opensuse:shadow-debuginfo, p-cpe:/a:novell:opensuse:libsmartcols1, p-cpe:/a:novell:opensuse:libblkid1-debuginfo, p-cpe:/a:novell:opensuse:libuuid-devel, p-cpe:/a:novell:opensuse:libuuid-devel-static, p-cpe:/a:novell:opensuse:libuuid1-debuginfo, p-cpe:/a:novell:opensuse:libmount-devel, p-cpe:/a:novell:opensuse:shadow-debugsource, p-cpe:/a:novell:opensuse:shadow, p-cpe:/a:novell:opensuse:libmount-devel-32bit, p-cpe:/a:novell:opensuse:libuuid-devel-32bit, p-cpe:/a:novell:opensuse:libfdisk-devel-static, p-cpe:/a:novell:opensuse:libblkid1-32bit-debuginfo, p-cpe:/a:novell:opensuse:libfdisk1-debuginfo, p-cpe:/a:novell:opensuse:libblkid-devel, p-cpe:/a:novell:opensuse:libsmartcols-devel-static, p-cpe:/a:novell:opensuse:util-linux-debuginfo, p-cpe:/a:novell:opensuse:libmount-devel-static, p-cpe:/a:novell:opensuse:libblkid-devel-32bit, p-cpe:/a:novell:opensuse:libfdisk1, p-cpe:/a:novell:opensuse:libsmartcols-devel, p-cpe:/a:novell:opensuse:libblkid1-32bit, p-cpe:/a:novell:opensuse:libblkid-devel-static, p-cpe:/a:novell:opensuse:util-linux, p-cpe:/a:novell:opensuse:libsmartcols1-debuginfo, p-cpe:/a:novell:opensuse:libuuid1-32bit, p-cpe:/a:novell:opensuse:util-linux-lang, p-cpe:/a:novell:opensuse:libfdisk-devel, p-cpe:/a:novell:opensuse:libmount1

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 9/24/2019

Vulnerability Publication Date: 9/24/2019