CVE-2020-8019

Name of the Vulnerable Software and Affected Versions SUSE Linux Enterprise Debuginfo 11-SP3 syslog-ng versions prior to 2.0.9-27.34.40.5.1 SUSE Linux Enterprise Debuginfo 11-SP4 syslog-ng versions prior to 2.0.9-27.34.40.5.1 SUSE Linux Enterprise Module for Legacy Software 12 syslog-ng versions prior to 3.6.4-12.8.1 SUSE Linux Enterprise Point of Sale 11-SP3 syslog-ng versions prior to 2.0.9-27.34.40.5.1 SUSE Linux Enterprise Server 11-SP4-LTSS syslog-ng versions prior to 2.0.9-27.34.40.5.1 SUSE Linux Enterprise Server for SAP 12-SP1 syslog-ng versions prior to 3.6.4-12.8.1 openSUSE Backports SLE-15-SP1 syslog-ng versions prior to 3.19.1-bp151.4.6.1 openSUSE Leap 15.1 syslog-ng versions prior to 3.19.1-lp151.3.6.1

Description A UNIX Symbolic Link (Symlink) Following vulnerability in the packaging of syslog-ng allows local attackers controlling the user news to escalate their privileges to root. This issue is related to the implementation of the syslog-ng protocol and can be exploited to gain elevated access.

Recommendations For SUSE Linux Enterprise Debuginfo 11-SP3, update to version 2.0.9-27.34.40.5.1 or later. For SUSE Linux Enterprise Debuginfo 11-SP4, update to version 2.0.9-27.34.40.5.1 or later. For SUSE Linux Enterprise Module for Legacy Software 12, update to version 3.6.4-12.8.1 or later. For SUSE Linux Enterprise Point of Sale 11-SP3, update to version 2.0.9-27.34.40.5.1 or later. For SUSE Linux Enterprise Server 11-SP4-LTSS, update to version 2.0.9-27.34.40.5.1 or later. For SUSE Linux Enterprise Server for SAP 12-SP1, update to version 3.6.4-12.8.1 or later. For openSUSE Backports SLE-15-SP1, update to version 3.19.1-bp151.4.6.1 or later. For openSUSE Leap 15.1, update to version 3.19.1-lp151.3.6.1 or later.