Bypass of Write-Access Restrictions in SUSE openSUSE Build Service
CVE-2011-0466

Currently unrated

Key Information:

Vendor: Novell
Status: Opensuse Build Service
Vendor: CVE Published:; 10 April 2011

What is CVE-2011-0466?

The API within SUSE openSUSE Build Service versions prior to 2.0.8 and 2.1.6 is vulnerable to a bypass that allows malicious actors to violate intended write-access restrictions. This flaw can enable unauthorized modifications to both packages and projects through unspecified vectors, raising significant security concerns for users relying on the integrity of their build environments.

References

http://news.opensuse.org/2011/03/02/build-service-team-re...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 10, 2011

Novell

What is CVE-2011-0466?

References

Timeline