Security update for auditlog-keeper

SUSE Security Update: Security update for auditlog-keeper
Announcement ID: SUSE-SU-2012:0958-1
Rating: important
References: #771335
Affected Products:
  • SUSE Manager 1.2 for SLE 11 SP1

  • An update that fixes one vulnerability is now available. It includes one version update.


    auditlog-keeper was updated to fix the following issue:

    * /etc/auditlog-keeper.conf was world-readable and
    contains various passwords. (CVE-2012-0421)

    Security Issue reference:

    * CVE-2012-0421

    Patch Instructions:

    To install this SUSE Security Update use YaST online_update.
    Alternatively you can run the command listed for your product:

    • SUSE Manager 1.2 for SLE 11 SP1:
      zypper in -t patch sleman12sp1-auditlog-keeper-6603

    To bring your system up-to-date, use "zypper patch".

    Package List:

    • SUSE Manager 1.2 for SLE 11 SP1 (noarch) [New Version: 0.2.1]:
    • auditlog-keeper-0.2.1-