openSUSE Security Update : syncthing / syncthing-gtk (openSUSE-2017-29)

Medium Nessus Plugin ID 96374


The remote openSUSE host is missing a security update.


This updates syncthing to version 0.14.16 and fixes the following issues :

The following security issue was fixed :

- A remote device that was already accepted by syncthing could perform arbitrary reads and writes outside of the configured directories (boo#1016161) This update also contains a number of upstream improvements in the 0.14.14 version, including :

- improved performance

- UI improvements

- prevention of data inconsistencies syncthing-gtk was updated to to fix reading the configuration with non-ASCII locales. The new version is compatible with syncthing 0.14.x and includes various improvement and fixes.


Update the affected syncthing / syncthing-gtk packages.

See Also

Plugin Details

Severity: Medium

ID: 96374

File Name: openSUSE-2017-29.nasl

Version: $Revision: 3.1 $

Type: local

Agent: unix

Published: 2017/01/10

Modified: 2017/01/10

Dependencies: 12634

Risk Information

Risk Factor: Medium

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:syncthing, p-cpe:/a:novell:opensuse:syncthing-gtk, p-cpe:/a:novell:opensuse:syncthing-gtk-lang, cpe:/o:novell:opensuse:42.1

Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list, Host/cpu

Patch Publication Date: 2017/01/07