AXSA:2021-1213:01

リリース日: 
2021/01/15 Friday - 12:33
題名: 
python-rtslib-2.1.73-2.el8
影響のあるチャネル: 
Asianux Server 8 for x86_64
Severity: 
N/A
Description: 

Update to version 2.1.73-2.

CVE-2020-14019
Open-iSCSI rtslib-fb through 2.1.72 has weak permissions for /etc/target/saveconfig.json because shutil.copyfile (instead of shutil.copy) is used, and thus permissions are not preserved.

解決策: 

Update packages.

追加情報: 

N/A

ダウンロード: 

SRPMS
  1. python-rtslib-2.1.73-2.el8.src.rpm
    MD5: 1b6370fd2f6c1fffbbc745a99d677540
    SHA-256: 4d7d236984d7d380ff22d4a0402172c6b3e4c8bf386e11298c49696cf158c215
    Size: 72.01 kB

Asianux Server 8 for x86_64
  1. python3-rtslib-2.1.73-2.el8.noarch.rpm
    MD5: 039c0cf143c1a1dbfee8705673ad6224
    SHA-256: 0302c95538ff1ece1de5d55f0c8de151465fe0e34366cb8b15fa504f5fcdfc50
    Size: 101.27 kB
  2. target-restore-2.1.73-2.el8.noarch.rpm
    MD5: 4db0148cc60d436e1db40ddbf273a048
    SHA-256: 4b7323fa345a5d3b7f7337ccbc1f7473469fa615e4ad4bc9e8b4a83f0464db0b
    Size: 22.75 kB
Copyright© 2007-2015 Asianux. All rights reserved.