Package : waagent
CVE ID : CVE-2019-0804
Francis McBratney发现Windows Azure Linux代理创建了具有全局可读权限的交换文件,从而导致了信息泄露。
这个问题在2.2.18-3~deb9u2版本中得到了修复。
有关waagent的详细安全状态,请参考其安全跟踪页面:https://securtracker.debian.org/tracker/waagent
--------------------
Package : waagent
CVE ID : CVE-2019-0804
Francis McBratney discovered that the Windows Azure Linux Agent created swap files with world-readable permissions, resulting in information disclosure.
This problem has been fixed in version 2.2.18-3~deb9u2.
For the detailed security status of waagent please refer to its security tracker page at: https://security-tracker.debian.org/tracker/waagent
Debian Security Advisory(Debian安全报告) DSA-4406-1
原文:https://www.cnblogs.com/iAmSoScArEd/p/10532810.html