安全公告详情

NS-SA-2025-1003

2025-03-28 00:00:00

简介

important: nde-license security update

严重级别

important

主题

An update for nde-license is now available for NewStartOS V4.5.2
NewStart Security has rated this update as having a security impact of critical.

详细描述

The/usr/bin/license program of NewStartOS has a command injection vulnerability, which allows ordinary users to execute arbitrary code and elevate privileges to ROOT.

影响组件

  • nde-license

影响产品

  • NewStartOS V4.5.2

更新包

{"fix":[{"product":"NewStartOS V4.5.2","pkgs":[{"binary":["nde-license-2.0.0-17.zncgsl6.x86_64.rpm"],"source":"nde-license-2.0.0-17.zncgsl6.src.rpm"}]}]}
NewStartOS V4.5.2
  • nde-license-2.0.0-17.zncgsl6.src.rpm
    • nde-license-2.0.0-17.zncgsl6.x86_64.rpm

CVE

参考

© 2004-2023 广东中兴新支点技术有限公司 版权所有 (www.gd-linux.com) 粤ICP备15061780号-2

全国服务热线:400-033-0108