Description
liby2util in Yet another Setup Tool (YaST) in SUSE Linux before 20051007 preserves permissions and ownerships when copying a remote repository, which might allow local users to read or modify sensitive files, possibly giving local users the ability to exploit CVE-2005-3013.
Affected products
- SUSE / suse_linux10.0 – 10.0
- SUSE / suse_linux9.3 – 9.3
- SUSE / suse_linux9.3 – 9.3
- SUSE / suse_linux9.3 – 9.3
- SUSE / suse_linux10.0 – 10.0
- SUSE / suse_linux1.0 – 1.0
- SUSE / suse_linux8 – 8
- SUSE / suse_linux8.0 – 8.0
- SUSE / suse_linux8.2 – 8.2
- SUSE / suse_linux8.2 – 8.2
- SUSE / suse_linux9.0 – 9.0
- SUSE / suse_linux9.0 – 9.0
- SUSE / suse_linux9.0 – 9.0
- SUSE / suse_linux9.0 – 9.0
- SUSE / suse_linux9.0 – 9.0
- SUSE / suse_linux9.1 – 9.1
- SUSE / suse_linux9.1 – 9.1
- SUSE / suse_linux9.1 – 9.1
- SUSE / suse_linux9.2 – 9.2
- SUSE / suse_linux9.2 – 9.2
- SUSE / suse_linux9.2 – 9.2
- SUSE / suse_linux_openexchange_server4.0 – 4.0
- SUSE / suse_linux_school_servergold – gold
- SUSE / suse_linux_standard_server8.0 – 8.0
- SUSE / suse_sled_beagle10.0 – 10.0