Overview

File _patchinfo of Package patchinfo.import4812

<patchinfo incident="opie" version="4812">
  <issue tracker="bnc" id="698772" />
  <issue tracker="CVE" id="CVE-2011-2489" />
  <issue tracker="CVE" id="CVE-2011-2490" />
  <category>security</category>
  <rating>low</rating>
  <summary>opie security update</summary>
  <description>This update fixes off-by-one errors in opiesu
(CVE-2011-2489) and missing setuid() return value checks in
opielogin (CVE-2011-2490).

This update also removes the setuid bit from opiesu
program. If you rely on the setuid bit on opiesu, add the
following line to /etc/permissions.local:

/usr/bin/opiesu root:root 4755
</description>
  <packager>adrianSuSE</packager>
</patchinfo>
openSUSE Build Service is sponsored by
Places