vulnerability

Red Hat: CVE-2019-3696: Low: pcp security, bug fix, and enhancement update (RHSA-2020:3869)

Try Surface Command
Back to search
Severity
7
CVSS
(AV:L/AC:M/Au:S/C:C/I:C/A:C)
Published
2020-03-03
Added
2020-10-01
Modified
2025-01-28

Description

A Improper Limitation of a Pathname to a Restricted Directory vulnerability in the packaging of pcp of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Module for Development Tools 15-SP1, SUSE Linux Enterprise Module for Open Buildservice Development Tools 15, SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15, SUSE Linux Enterprise Software Development Kit 12-SP4, SUSE Linux Enterprise Software Development Kit 12-SP5; openSUSE Leap 15.1 allows local user pcp to overwrite arbitrary files with arbitrary content. This issue affects: SUSE Linux Enterprise High Performance Computing 15-ESPOS pcp versions prior to 3.11.9-5.8.1. SUSE Linux Enterprise High Performance Computing 15-LTSS pcp versions prior to 3.11.9-5.8.1. SUSE Linux Enterprise Module for Development Tools 15 pcp versions prior to 3.11.9-5.8.1. SUSE Linux Enterprise Module for Development Tools 15-SP1 pcp versions prior to 4.3.1-3.5.3. SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 pcp versions prior to 3.11.9-5.8.1. SUSE Linux Enterprise Server 15-LTSS pcp versions prior to 3.11.9-5.8.1. SUSE Linux Enterprise Server for SAP 15 pcp versions prior to 3.11.9-5.8.1. SUSE Linux Enterprise Software Development Kit 12-SP4 pcp versions prior to 3.11.9-6.14.1. SUSE Linux Enterprise Software Development Kit 12-SP5 pcp versions prior to 3.11.9-6.14.1. openSUSE Leap 15.1 pcp versions prior to 4.3.1-lp151.2.3.1.

Solution(s)

redhat-upgrade-pcpredhat-upgrade-pcp-confredhat-upgrade-pcp-debuginforedhat-upgrade-pcp-develredhat-upgrade-pcp-docredhat-upgrade-pcp-export-pcp2elasticsearchredhat-upgrade-pcp-export-pcp2graphiteredhat-upgrade-pcp-export-pcp2influxdbredhat-upgrade-pcp-export-pcp2jsonredhat-upgrade-pcp-export-pcp2sparkredhat-upgrade-pcp-export-pcp2xmlredhat-upgrade-pcp-export-pcp2zabbixredhat-upgrade-pcp-export-zabbix-agentredhat-upgrade-pcp-guiredhat-upgrade-pcp-import-collectl2pcpredhat-upgrade-pcp-import-ganglia2pcpredhat-upgrade-pcp-import-iostat2pcpredhat-upgrade-pcp-import-mrtg2pcpredhat-upgrade-pcp-import-sar2pcpredhat-upgrade-pcp-libsredhat-upgrade-pcp-libs-develredhat-upgrade-pcp-managerredhat-upgrade-pcp-pmda-activemqredhat-upgrade-pcp-pmda-apacheredhat-upgrade-pcp-pmda-bashredhat-upgrade-pcp-pmda-bccredhat-upgrade-pcp-pmda-bind2redhat-upgrade-pcp-pmda-bondingredhat-upgrade-pcp-pmda-cifsredhat-upgrade-pcp-pmda-ciscoredhat-upgrade-pcp-pmda-dbpingredhat-upgrade-pcp-pmda-dmredhat-upgrade-pcp-pmda-dockerredhat-upgrade-pcp-pmda-ds389redhat-upgrade-pcp-pmda-ds389logredhat-upgrade-pcp-pmda-elasticsearchredhat-upgrade-pcp-pmda-gfs2redhat-upgrade-pcp-pmda-glusterredhat-upgrade-pcp-pmda-gpfsredhat-upgrade-pcp-pmda-gpsdredhat-upgrade-pcp-pmda-haproxyredhat-upgrade-pcp-pmda-infinibandredhat-upgrade-pcp-pmda-jsonredhat-upgrade-pcp-pmda-libvirtredhat-upgrade-pcp-pmda-lioredhat-upgrade-pcp-pmda-lmsensorsredhat-upgrade-pcp-pmda-loggerredhat-upgrade-pcp-pmda-lustreredhat-upgrade-pcp-pmda-lustrecommredhat-upgrade-pcp-pmda-mailqredhat-upgrade-pcp-pmda-memcacheredhat-upgrade-pcp-pmda-micredhat-upgrade-pcp-pmda-mountsredhat-upgrade-pcp-pmda-mysqlredhat-upgrade-pcp-pmda-namedredhat-upgrade-pcp-pmda-netfilterredhat-upgrade-pcp-pmda-newsredhat-upgrade-pcp-pmda-nfsclientredhat-upgrade-pcp-pmda-nginxredhat-upgrade-pcp-pmda-nvidia-gpuredhat-upgrade-pcp-pmda-oracleredhat-upgrade-pcp-pmda-pdnsredhat-upgrade-pcp-pmda-perfeventredhat-upgrade-pcp-pmda-postfixredhat-upgrade-pcp-pmda-postgresqlredhat-upgrade-pcp-pmda-prometheusredhat-upgrade-pcp-pmda-redisredhat-upgrade-pcp-pmda-roomtempredhat-upgrade-pcp-pmda-rpmredhat-upgrade-pcp-pmda-rsyslogredhat-upgrade-pcp-pmda-sambaredhat-upgrade-pcp-pmda-sendmailredhat-upgrade-pcp-pmda-shpingredhat-upgrade-pcp-pmda-slurmredhat-upgrade-pcp-pmda-smartredhat-upgrade-pcp-pmda-snmpredhat-upgrade-pcp-pmda-summaryredhat-upgrade-pcp-pmda-systemdredhat-upgrade-pcp-pmda-traceredhat-upgrade-pcp-pmda-unboundredhat-upgrade-pcp-pmda-vmwareredhat-upgrade-pcp-pmda-weblogredhat-upgrade-pcp-pmda-zimbraredhat-upgrade-pcp-pmda-zswapredhat-upgrade-pcp-selinuxredhat-upgrade-pcp-system-toolsredhat-upgrade-pcp-testsuiteredhat-upgrade-pcp-webapiredhat-upgrade-pcp-webapp-blinkenlightsredhat-upgrade-pcp-webapp-grafanaredhat-upgrade-pcp-webapp-graphiteredhat-upgrade-pcp-webapp-vectorredhat-upgrade-pcp-webjsredhat-upgrade-pcp-zeroconfredhat-upgrade-perl-pcp-logimportredhat-upgrade-perl-pcp-logsummaryredhat-upgrade-perl-pcp-mmvredhat-upgrade-perl-pcp-pmdaredhat-upgrade-python-pcp

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today