vulnerability

Huawei EulerOS: CVE-2019-3696: pcp security update

Severity
7
CVSS
(AV:L/AC:M/Au:S/C:C/I:C/A:C)
Published
Mar 3, 2020
Added
Dec 16, 2020
Modified
Jan 28, 2025

Description

A Improper Limitation of a Pathname to a Restricted Directory vulnerability in the packaging of pcp of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Module for Development Tools 15-SP1, SUSE Linux Enterprise Module for Open Buildservice Development Tools 15, SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15, SUSE Linux Enterprise Software Development Kit 12-SP4, SUSE Linux Enterprise Software Development Kit 12-SP5; openSUSE Leap 15.1 allows local user pcp to overwrite arbitrary files with arbitrary content. This issue affects: SUSE Linux Enterprise High Performance Computing 15-ESPOS pcp versions prior to 3.11.9-5.8.1. SUSE Linux Enterprise High Performance Computing 15-LTSS pcp versions prior to 3.11.9-5.8.1. SUSE Linux Enterprise Module for Development Tools 15 pcp versions prior to 3.11.9-5.8.1. SUSE Linux Enterprise Module for Development Tools 15-SP1 pcp versions prior to 4.3.1-3.5.3. SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 pcp versions prior to 3.11.9-5.8.1. SUSE Linux Enterprise Server 15-LTSS pcp versions prior to 3.11.9-5.8.1. SUSE Linux Enterprise Server for SAP 15 pcp versions prior to 3.11.9-5.8.1. SUSE Linux Enterprise Software Development Kit 12-SP4 pcp versions prior to 3.11.9-6.14.1. SUSE Linux Enterprise Software Development Kit 12-SP5 pcp versions prior to 3.11.9-6.14.1. openSUSE Leap 15.1 pcp versions prior to 4.3.1-lp151.2.3.1.

Solution(s)

huawei-euleros-2_0_sp5-upgrade-pcphuawei-euleros-2_0_sp5-upgrade-pcp-confhuawei-euleros-2_0_sp5-upgrade-pcp-dochuawei-euleros-2_0_sp5-upgrade-pcp-export-pcp2graphitehuawei-euleros-2_0_sp5-upgrade-pcp-guihuawei-euleros-2_0_sp5-upgrade-pcp-libshuawei-euleros-2_0_sp5-upgrade-pcp-pmda-activemqhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-apachehuawei-euleros-2_0_sp5-upgrade-pcp-pmda-bashhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-bondinghuawei-euleros-2_0_sp5-upgrade-pcp-pmda-ciscohuawei-euleros-2_0_sp5-upgrade-pcp-pmda-dbpinghuawei-euleros-2_0_sp5-upgrade-pcp-pmda-dmhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-ds389huawei-euleros-2_0_sp5-upgrade-pcp-pmda-ds389loghuawei-euleros-2_0_sp5-upgrade-pcp-pmda-elasticsearchhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-gfs2huawei-euleros-2_0_sp5-upgrade-pcp-pmda-glusterhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-gpfshuawei-euleros-2_0_sp5-upgrade-pcp-pmda-gpsdhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-jsonhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-kvmhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-lmsensorshuawei-euleros-2_0_sp5-upgrade-pcp-pmda-loggerhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-lustrehuawei-euleros-2_0_sp5-upgrade-pcp-pmda-lustrecommhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-mailqhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-memcachehuawei-euleros-2_0_sp5-upgrade-pcp-pmda-mountshuawei-euleros-2_0_sp5-upgrade-pcp-pmda-mysqlhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-namedhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-netfilterhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-newshuawei-euleros-2_0_sp5-upgrade-pcp-pmda-nfsclienthuawei-euleros-2_0_sp5-upgrade-pcp-pmda-nginxhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-nvidia-gpuhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-pdnshuawei-euleros-2_0_sp5-upgrade-pcp-pmda-postfixhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-postgresqlhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-roomtemphuawei-euleros-2_0_sp5-upgrade-pcp-pmda-rpmhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-sendmailhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-shpinghuawei-euleros-2_0_sp5-upgrade-pcp-pmda-summaryhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-tracehuawei-euleros-2_0_sp5-upgrade-pcp-pmda-unboundhuawei-euleros-2_0_sp5-upgrade-pcp-pmda-webloghuawei-euleros-2_0_sp5-upgrade-pcp-pmda-zswaphuawei-euleros-2_0_sp5-upgrade-pcp-selinuxhuawei-euleros-2_0_sp5-upgrade-pcp-system-toolshuawei-euleros-2_0_sp5-upgrade-perl-pcp-pmdahuawei-euleros-2_0_sp5-upgrade-python-pcp
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.