SUSE-SU-2014:1211-1: moderate: Security update for powerpc-utils

sle-updates at sle-updates at
Wed Sep 24 15:04:13 MDT 2014

   SUSE Security Update: Security update for powerpc-utils

Announcement ID:    SUSE-SU-2014:1211-1
Rating:             moderate
References:         #883174 
Cross-References:   CVE-2014-4040
Affected Products:
                    SUSE Linux Enterprise Server 11 SP3

   An update that fixes one vulnerability is now available.


   The "snap" system information collection tool of the PowerPC Utils package
   collected fstab and yaboot.conf files which might contain passwords.

   As these files are of interest, we now print a warning that the user of
   the "snap" tool should check if private passwords are in those files.

   Security Issues:

       * CVE-2014-4040

Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Server 11 SP3:

      zypper in -t patch slessp3-powerpc-utils-9727

   To bring your system up-to-date, use "zypper patch".

Package List:

   - SUSE Linux Enterprise Server 11 SP3 (ppc64):



More information about the sle-updates mailing list