Security update for openwsman SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2019:1111-1 Final 1 1 2019-04-02T11:03:35Z current 2019-04-02T11:03:35Z 2019-04-02T11:03:35Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for openwsman This update for openwsman fixes the following issues: Security issues fixed: - CVE-2019-3816: Fixed a vulnerability in openwsmand deamon which could lead to arbitary file disclosure (bsc#1122623). - CVE-2019-3833: Fixed a vulnerability in process_connection() which could allow an attacker to trigger an infinite loop which leads to Denial of Service (bsc#1122623). Other issues addressed: - Added OpenSSL 1.1 compatibility - Compilation in debug mode fixed - Directory listing without authentication fixed (bsc#1092206). This update was imported from the SUSE:SLE-15:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2019-1111 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/KFUBWPIQNXTWDIPGMP4SO3OSCZDHINE4/#KFUBWPIQNXTWDIPGMP4SO3OSCZDHINE4 E-Mail link for openSUSE-SU-2019:1111-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1092206 SUSE Bug 1092206 https://bugzilla.suse.com/1122623 SUSE Bug 1122623 https://www.suse.com/security/cve/CVE-2019-3816/ SUSE CVE CVE-2019-3816 page https://www.suse.com/security/cve/CVE-2019-3833/ SUSE CVE CVE-2019-3833 page openSUSE Leap 15.0 libwsman-devel-2.6.7-lp150.2.3.1 libwsman3-2.6.7-lp150.2.3.1 libwsman_clientpp-devel-2.6.7-lp150.2.3.1 libwsman_clientpp1-2.6.7-lp150.2.3.1 openwsman-java-2.6.7-lp150.2.3.1 openwsman-perl-2.6.7-lp150.2.3.1 openwsman-ruby-2.6.7-lp150.2.3.1 openwsman-ruby-docs-2.6.7-lp150.2.3.1 openwsman-server-2.6.7-lp150.2.3.1 openwsman-server-plugin-ruby-2.6.7-lp150.2.3.1 python3-openwsman-2.6.7-lp150.2.3.1 winrs-2.6.7-lp150.2.3.1 libwsman-devel-2.6.7-lp150.2.3.1 as a component of openSUSE Leap 15.0 libwsman3-2.6.7-lp150.2.3.1 as a component of openSUSE Leap 15.0 libwsman_clientpp-devel-2.6.7-lp150.2.3.1 as a component of openSUSE Leap 15.0 libwsman_clientpp1-2.6.7-lp150.2.3.1 as a component of openSUSE Leap 15.0 openwsman-java-2.6.7-lp150.2.3.1 as a component of openSUSE Leap 15.0 openwsman-perl-2.6.7-lp150.2.3.1 as a component of openSUSE Leap 15.0 openwsman-ruby-2.6.7-lp150.2.3.1 as a component of openSUSE Leap 15.0 openwsman-ruby-docs-2.6.7-lp150.2.3.1 as a component of openSUSE Leap 15.0 openwsman-server-2.6.7-lp150.2.3.1 as a component of openSUSE Leap 15.0 openwsman-server-plugin-ruby-2.6.7-lp150.2.3.1 as a component of openSUSE Leap 15.0 python3-openwsman-2.6.7-lp150.2.3.1 as a component of openSUSE Leap 15.0 winrs-2.6.7-lp150.2.3.1 as a component of openSUSE Leap 15.0 Openwsman, versions up to and including 2.6.9, are vulnerable to arbitrary file disclosure because the working directory of openwsmand daemon was set to root directory. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially crafted HTTP request to openwsman server. CVE-2019-3816 openSUSE Leap 15.0:libwsman-devel-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:libwsman3-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:libwsman_clientpp-devel-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:libwsman_clientpp1-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:openwsman-java-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:openwsman-perl-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:openwsman-ruby-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:openwsman-ruby-docs-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:openwsman-server-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:openwsman-server-plugin-ruby-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:python3-openwsman-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:winrs-2.6.7-lp150.2.3.1 important 5 AV:N/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/KFUBWPIQNXTWDIPGMP4SO3OSCZDHINE4/#KFUBWPIQNXTWDIPGMP4SO3OSCZDHINE4 https://www.suse.com/security/cve/CVE-2019-3816.html CVE-2019-3816 https://bugzilla.suse.com/1122623 SUSE Bug 1122623 Openwsman, versions up to and including 2.6.9, are vulnerable to infinite loop in process_connection() when parsing specially crafted HTTP requests. A remote, unauthenticated attacker can exploit this vulnerability by sending malicious HTTP request to cause denial of service to openwsman server. CVE-2019-3833 openSUSE Leap 15.0:libwsman-devel-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:libwsman3-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:libwsman_clientpp-devel-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:libwsman_clientpp1-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:openwsman-java-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:openwsman-perl-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:openwsman-ruby-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:openwsman-ruby-docs-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:openwsman-server-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:openwsman-server-plugin-ruby-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:python3-openwsman-2.6.7-lp150.2.3.1 openSUSE Leap 15.0:winrs-2.6.7-lp150.2.3.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/KFUBWPIQNXTWDIPGMP4SO3OSCZDHINE4/#KFUBWPIQNXTWDIPGMP4SO3OSCZDHINE4 https://www.suse.com/security/cve/CVE-2019-3833.html CVE-2019-3833 https://bugzilla.suse.com/1122623 SUSE Bug 1122623