CVE-2022-21950 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2022-21950 Interim 1 6 2025-02-16T03:13:06Z current 2022-08-16T23:38:45Z 2025-02-16T03:13:06Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2022-21950 A Improper Access Control vulnerability in the systemd service of cana in openSUSE Backports SLE-15-SP3, openSUSE Backports SLE-15-SP4 allows local users to hijack the UNIX domain socket This issue affects: openSUSE Backports SLE-15-SP3 canna versions prior to canna-3.7p3-bp153.2.3.1. openSUSE Backports SLE-15-SP4 canna versions prior to 3.7p3-bp154.3.3.1. openSUSE Factory was also affected. Instead of fixing the package it was deleted there. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NMED26UTKOFQLW2ZTPZMKHK6XEJRXGHC/ E-Mail link for openSUSE-SU-2022:10090-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/N6TC5ZCUI72X4R5D7ZDQYSKDW4VVCUOE/ E-Mail link for openSUSE-SU-2022:10091-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE Package Hub 15 SP3 SUSE Package Hub 15 SP4 openSUSE Leap 15.3 openSUSE Leap 15.4 canna canna-3.7p3-bp153.2.3.1 canna-3.7p3-bp154.3.3.1 canna-devel-3.7p3-bp153.2.3.1 canna-devel-3.7p3-bp154.3.3.1 canna-libs canna-libs-3.7p3-bp153.2.3.1 canna-libs-3.7p3-bp154.3.3.1 canna-libs-32bit-3.7p3-bp153.2.3.1 canna-libs-32bit-3.7p3-bp154.3.3.1 canna-libs-64bit-3.7p3-bp153.2.3.1 canna-libs-64bit-3.7p3-bp154.3.3.1 canna-3.7p3-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 canna-devel-3.7p3-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 canna-libs-3.7p3-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 canna-libs-32bit-3.7p3-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 canna-libs-64bit-3.7p3-bp153.2.3.1 as a component of SUSE Package Hub 15 SP3 canna-3.7p3-bp154.3.3.1 as a component of SUSE Package Hub 15 SP4 canna-devel-3.7p3-bp154.3.3.1 as a component of SUSE Package Hub 15 SP4 canna-libs-3.7p3-bp154.3.3.1 as a component of SUSE Package Hub 15 SP4 canna-libs-32bit-3.7p3-bp154.3.3.1 as a component of SUSE Package Hub 15 SP4 canna-libs-64bit-3.7p3-bp154.3.3.1 as a component of SUSE Package Hub 15 SP4 canna-3.7p3-bp153.2.3.1 as a component of openSUSE Leap 15.3 canna-devel-3.7p3-bp153.2.3.1 as a component of openSUSE Leap 15.3 canna-libs-3.7p3-bp153.2.3.1 as a component of openSUSE Leap 15.3 canna-libs-32bit-3.7p3-bp153.2.3.1 as a component of openSUSE Leap 15.3 canna-libs-64bit-3.7p3-bp153.2.3.1 as a component of openSUSE Leap 15.3 canna-3.7p3-bp154.3.3.1 as a component of openSUSE Leap 15.4 canna-devel-3.7p3-bp154.3.3.1 as a component of openSUSE Leap 15.4 canna-libs-3.7p3-bp154.3.3.1 as a component of openSUSE Leap 15.4 canna-libs-32bit-3.7p3-bp154.3.3.1 as a component of openSUSE Leap 15.4 canna-libs-64bit-3.7p3-bp154.3.3.1 as a component of openSUSE Leap 15.4 canna as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 canna-libs as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 A Improper Access Control vulnerability in the systemd service of cana in openSUSE Backports SLE-15-SP3, openSUSE Backports SLE-15-SP4 allows local users to hijack the UNIX domain socket This issue affects: openSUSE Backports SLE-15-SP3 canna versions prior to canna-3.7p3-bp153.2.3.1. openSUSE Backports SLE-15-SP4 canna versions prior to 3.7p3-bp154.3.3.1. openSUSE Factory was also affected. Instead of fixing the package it was deleted there. CVE-2022-21950 SUSE Package Hub 15 SP3:canna-3.7p3-bp153.2.3.1 SUSE Package Hub 15 SP3:canna-devel-3.7p3-bp153.2.3.1 SUSE Package Hub 15 SP3:canna-libs-3.7p3-bp153.2.3.1 SUSE Package Hub 15 SP3:canna-libs-32bit-3.7p3-bp153.2.3.1 SUSE Package Hub 15 SP3:canna-libs-64bit-3.7p3-bp153.2.3.1 SUSE Package Hub 15 SP4:canna-3.7p3-bp154.3.3.1 SUSE Package Hub 15 SP4:canna-devel-3.7p3-bp154.3.3.1 SUSE Package Hub 15 SP4:canna-libs-3.7p3-bp154.3.3.1 SUSE Package Hub 15 SP4:canna-libs-32bit-3.7p3-bp154.3.3.1 SUSE Package Hub 15 SP4:canna-libs-64bit-3.7p3-bp154.3.3.1 openSUSE Leap 15.3:canna-3.7p3-bp153.2.3.1 openSUSE Leap 15.3:canna-devel-3.7p3-bp153.2.3.1 openSUSE Leap 15.3:canna-libs-3.7p3-bp153.2.3.1 openSUSE Leap 15.3:canna-libs-32bit-3.7p3-bp153.2.3.1 openSUSE Leap 15.3:canna-libs-64bit-3.7p3-bp153.2.3.1 openSUSE Leap 15.4:canna-3.7p3-bp154.3.3.1 openSUSE Leap 15.4:canna-devel-3.7p3-bp154.3.3.1 openSUSE Leap 15.4:canna-libs-3.7p3-bp154.3.3.1 openSUSE Leap 15.4:canna-libs-32bit-3.7p3-bp154.3.3.1 openSUSE Leap 15.4:canna-libs-64bit-3.7p3-bp154.3.3.1 SUSE Linux Enterprise Workstation Extension 12 SP5:canna SUSE Linux Enterprise Workstation Extension 12 SP5:canna-libs important 7.7 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N