Overview

File _patchinfo of Package patchinfo.5929

<patchinfo incident="5929">
  <issue id="1064127" tracker="bnc">VUL-0: CVE-2017-15638: SuSEfirewall2: "_rpc_" protocol rules causes the firewall to add unrestricted iptables rules for acces to portmapper port 111</issue>
  <issue id="2017-15638" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>mgerstner</packager>
  <description>This update for SuSEfirewall2 fixes the following issues:

- CVE-2017-15638: Fixed a security issue with too open implicit portmapper rules
  (bsc#1064127): A source net restriction for _rpc_ services
  was not taken into account for the implicitly added rules for port 111,
  making the portmap service accessible to everyone in the affected zone.
</description>
  <summary>Security update for SuSEfirewall2</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places