Overview

File _patchinfo of Package patchinfo.17859

<patchinfo incident="17859">
  <issue tracker="cve" id="2022-37704"/>
  <issue tracker="cve" id="2022-37705"/>
  <issue tracker="bnc" id="1208032">VUL-0: CVE-2022-37705: amanda: crafted arguments to the runtar SUID binary leads to local privilege escalation to root</issue>
  <issue tracker="bnc" id="1208033">VUL-0: CVE-2022-37704: amanda: rundump: local privilege escalation</issue>
  <packager>dgarcia</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for amanda</summary>
  <description>This update for amanda fixes the following issues:

- CVE-2022-37704: fix privilege escalation via rundump (boo#1208033, gh#zmanda/amanda#195)
- CVE-2022-37705: fix privilege escalation via runtar suid binary (boo#1208032, gh#zmanda/amanda#194)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places