cockpit-311.2-1.el9_4.ML.1
エラータID: AXSA:2024-8451:13
Release date:
Monday, June 24, 2024 - 16:53
Subject:
cockpit-311.2-1.el9_4.ML.1
Affected Channels:
MIRACLE LINUX 9 for x86_64
Severity:
Moderate
Description:
Cockpit enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELinux troubleshooting, interactive command-line sessions, and more.
Security Fix(es):
* cockpit: command injection when deleting a sosreport with a crafted name (CVE-2024-2947)
CVE-2024-2947
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer.
Solution:
Update packages.
CVEs:
CVE-2024-2947
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer.
A flaw was found in Cockpit. Deleting a sosreport with a crafted name via the Cockpit web interface can lead to a command injection vulnerability, resulting in privilege escalation. This issue affects Cockpit versions 270 and newer.
Additional Info:
N/A
Download:
SRPMS
- cockpit-311.2-1.el9_4.ML.1.src.rpm
MD5: 1dbae4e9172d7207de89f7395467568e
SHA-256: a76f19c61c487ef68e517dd75edeb90bc22032960bc984cd5edb49af9fe24275
Size: 13.89 MB
Asianux Server 9 for x86_64
- cockpit-311.2-1.el9_4.ML.1.x86_64.rpm
MD5: b2e8a43a6dde7cc13d5f48c526e0b852
SHA-256: fd8d9718194c929fd37524800b298370e9ec338f6577e1d3d163bc1c7a0c5a68
Size: 40.28 kB - cockpit-bridge-311.2-1.el9_4.ML.1.x86_64.rpm
MD5: 33a54092704a33b78c41eb8045073cf9
SHA-256: 5fa404b95352334c0d4e513c9f07a5cbbf98114da9e31a01ee6be286e68ec730
Size: 551.35 kB - cockpit-doc-311.2-1.el9_4.ML.1.noarch.rpm
MD5: ac615235c3e0c4c4867589cdf4cc833c
SHA-256: e991c868c6e129ab290dbff554138e18f7e0b76b7150b5f91cd4a253a3815879
Size: 151.93 kB - cockpit-packagekit-311.2-1.el9_4.ML.1.noarch.rpm
MD5: 8e8c9783a8f15f924821c62117979146
SHA-256: ef04920a50ef97cff1c8b5b7bfeecd92b2347430ff7f741f663196bd08a24431
Size: 945.05 kB - cockpit-pcp-311.2-1.el9_4.ML.1.x86_64.rpm
MD5: ba5a203b01268010cc3b431494f0ec6f
SHA-256: dd619876208adbb2769d771aa8644f0326c97dd1d9b202d8adb056e11440c490
Size: 78.06 kB - cockpit-storaged-311.2-1.el9_4.ML.1.noarch.rpm
MD5: dbabc3d384865e0eb4a00e3ee75cc299
SHA-256: 4e139de78134ef8b75667fff4c34c88027da6e11667c13abbbdca0267fac0e59
Size: 864.54 kB - cockpit-system-311.2-1.el9_4.ML.1.noarch.rpm
MD5: 5a02338c0b679400cf694ca71ab6f222
SHA-256: e66f07258aa07f78b40e100c0eb9e129243dc763321951094ea6b77ecab6dba2
Size: 5.16 MB - cockpit-ws-311.2-1.el9_4.ML.1.x86_64.rpm
MD5: 2464d95156713ebf2126b8f7b25ba82c
SHA-256: e9b3c0b53813a118bef6c46a194abb833774f8def9b8860df72ffc16a421e448
Size: 942.51 kB
日本語