Bug 1121032 - (CVE-2015-9275) VUL-0: CVE-2015-9275: arc: directory traversal
(CVE-2015-9275)
VUL-0: CVE-2015-9275: arc: directory traversal
Status: CONFIRMED
Classification: openSUSE
Product: openSUSE Distribution
Classification: openSUSE
Component: Security
Leap 15.1
Other Other
: P3 - Medium : Minor (vote)
: ---
Assigned To: Marcus Meissner
Security Team bot
https://smash.suse.de/issue/222273/
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2019-01-08 08:37 UTC by Karol Babioch
Modified: 2020-01-25 17:13 UTC (History)
8 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Wolfgang Frisch 2020-01-16 15:05:16 UTC
arc-5.21q in openSUSE Leap 15.1 is vulnerable.
Comment 2 Swamp Workflow Management 2020-01-17 09:50:06 UTC
This is an autogenerated message for OBS integration:
This bug (1121032) was mentioned in
https://build.opensuse.org/request/show/765167 15.1 / arc
https://build.opensuse.org/request/show/765168 Backports:SLE-15 / arc
https://build.opensuse.org/request/show/765169 Backports:SLE-15-SP1 / arc
Comment 3 Swamp Workflow Management 2020-01-25 17:13:35 UTC
openSUSE-SU-2020:0103-1: An update that fixes one vulnerability is now available.

Category: security (moderate)
Bug References: 1121032
CVE References: CVE-2015-9275
Sources used:
openSUSE Leap 15.1 (src):    arc-5.21q-lp151.3.3.1
openSUSE Backports SLE-15-SP1 (src):    arc-5.21q-bp151.4.3.1
openSUSE Backports SLE-15 (src):    arc-5.21q-bp150.2.3.1