CVE-2011-2225

Common Vulnerabilities and Exposures

Upstream information

CVE-2011-2225 at MITRE

Description

Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows attackers to have an unknown impact via a crafted directory pathname that is inserted into config.sh.

NVD CVSS v2 Base Score: 9.3 (AV:N/AC:M/Au:N/C:C/I:C/A:C)

Novell/SUSE information

Novell Bugzilla entry: 709572

SUSE Security Advisories:

SUSE-SU-2011:0917-1, published Thu, 18 Aug 2011 09:08:24 +0200 (CEST)
SUSE-SU-2011:1324-1, published Thu, 15 Dec 2011 01:08:52 +0100 (CET)

List of released packages

Product(s)	Fixed package version(s)	References
SUSE Studio Onsite 1.1 [Appliance - Studio]	`kiwi >= 3.74.2-0.81.8` `kiwi-desc-isoboot >= 3.74.2-0.81.8` `kiwi-desc-netboot >= 3.74.2-0.81.8` `kiwi-desc-oemboot >= 3.74.2-0.81.8` `kiwi-desc-usbboot >= 3.74.2-0.81.8` `kiwi-desc-vmxboot >= 3.74.2-0.81.8` `kiwi-desc-xenboot >= 3.74.2-0.81.8` `kiwi-doc >= 3.74.2-0.81.8` `kiwi-tools >= 3.74.2-0.81.8` `susestudio >= 1.1.4-0.19.2` `susestudio-clicfs >= 1.1.4-0.19.2` `susestudio-common >= 1.1.4-0.19.2` `susestudio-image-helpers >= 1.1.4-0.3.2` `susestudio-kiwi-runner >= 1.1.4-0.19.2` `susestudio-rmds >= 1.1.4-0.19.2` `susestudio-testdrive >= 1.1.4-0.19.2` `susestudio-thoth >= 1.1.4-0.19.2` `susestudio-ui-server >= 1.1.4-0.19.2`	studioonsite1.1.x86-64 SAT Patch Nr: 4998
SUSE Studio Extension for System z 1.2	`kiwi4 >= 4.85.1-0.22.9` `kiwi4-desc-oemboot >= 4.85.1-0.22.9` `kiwi4-desc-vmxboot >= 4.85.1-0.22.9` `kiwi4-tools >= 4.85.1-0.22.9` `susestudio >= 1.2.1-0.26.1` `susestudio-common >= 1.2.1-0.26.1` `susestudio-image-helpers >= 1.2.1-0.3.3` `susestudio-runner >= 1.2.1-0.26.1` `susestudio-ui-server >= 1.2.1-0.26.1`	studioonsite1.2.x86-64 studioonsite1.2.s390x SAT Patch Nr: 5535
SUSE Studio Onsite 1.2 [Appliance - Studio]	`kiwi4 >= 4.85.1-0.22.9` `kiwi4-desc-isoboot >= 4.85.1-0.22.9` `kiwi4-desc-netboot >= 4.85.1-0.22.9` `kiwi4-desc-oemboot >= 4.85.1-0.22.9` `kiwi4-desc-vmxboot >= 4.85.1-0.22.9` `kiwi4-doc >= 4.85.1-0.22.9` `kiwi4-tools >= 4.85.1-0.22.9` `susestudio >= 1.2.1-0.26.1` `susestudio-clicfs >= 1.2.1-0.26.1` `susestudio-common >= 1.2.1-0.26.1` `susestudio-image-helpers >= 1.2.1-0.3.3` `susestudio-parted >= 1.2.1-0.26.1` `susestudio-rmds >= 1.2.1-0.26.1` `susestudio-runner >= 1.2.1-0.26.1` `susestudio-squashfs >= 1.2.1-0.26.1` `susestudio-thoth >= 1.2.1-0.26.1` `susestudio-ui-server >= 1.2.1-0.26.1`	studioonsite1.2.x86-64 studioonsite1.2.s390x SAT Patch Nr: 5535

Products

Products By Category

Collaboration

Endpoint Management

File & Networking Services

Services & Support

Help Yourself

Let Us Help

Download

IT Consulting

Technical Training

Customer Center

Contribute

Partners

Partner With Novell

PartnerNet

Find a Partner

Developers

Communities

About Novell

How to Buy