{"affected":[{"ecosystem_specific":{"binaries":[{"libpcp-devel":"3.11.9-5.8.1","libpcp3":"3.11.9-5.8.1","libpcp_gui2":"3.11.9-5.8.1","libpcp_import1":"3.11.9-5.8.1","libpcp_mmv1":"3.11.9-5.8.1","libpcp_trace2":"3.11.9-5.8.1","libpcp_web1":"3.11.9-5.8.1","pcp":"3.11.9-5.8.1","pcp-conf":"3.11.9-5.8.1","pcp-devel":"3.11.9-5.8.1","pcp-doc":"3.11.9-5.8.1","pcp-import-iostat2pcp":"3.11.9-5.8.1","pcp-import-mrtg2pcp":"3.11.9-5.8.1","pcp-import-sar2pcp":"3.11.9-5.8.1","perl-PCP-LogImport":"3.11.9-5.8.1","perl-PCP-LogSummary":"3.11.9-5.8.1","perl-PCP-MMV":"3.11.9-5.8.1","perl-PCP-PMDA":"3.11.9-5.8.1","python-pcp":"3.11.9-5.8.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Development Tools 15","name":"pcp","purl":"pkg:rpm/suse/pcp&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.9-5.8.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpcp-devel":"3.11.9-5.8.1","libpcp3":"3.11.9-5.8.1","libpcp_gui2":"3.11.9-5.8.1","libpcp_import1":"3.11.9-5.8.1","libpcp_mmv1":"3.11.9-5.8.1","libpcp_trace2":"3.11.9-5.8.1","libpcp_web1":"3.11.9-5.8.1","pcp":"3.11.9-5.8.1","pcp-conf":"3.11.9-5.8.1","pcp-devel":"3.11.9-5.8.1","pcp-doc":"3.11.9-5.8.1","pcp-import-iostat2pcp":"3.11.9-5.8.1","pcp-import-mrtg2pcp":"3.11.9-5.8.1","pcp-import-sar2pcp":"3.11.9-5.8.1","perl-PCP-LogImport":"3.11.9-5.8.1","perl-PCP-LogSummary":"3.11.9-5.8.1","perl-PCP-MMV":"3.11.9-5.8.1","perl-PCP-PMDA":"3.11.9-5.8.1","python-pcp":"3.11.9-5.8.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15-ESPOS","name":"pcp","purl":"pkg:rpm/suse/pcp&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.9-5.8.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpcp-devel":"3.11.9-5.8.1","libpcp3":"3.11.9-5.8.1","libpcp_gui2":"3.11.9-5.8.1","libpcp_import1":"3.11.9-5.8.1","libpcp_mmv1":"3.11.9-5.8.1","libpcp_trace2":"3.11.9-5.8.1","libpcp_web1":"3.11.9-5.8.1","pcp":"3.11.9-5.8.1","pcp-conf":"3.11.9-5.8.1","pcp-devel":"3.11.9-5.8.1","pcp-doc":"3.11.9-5.8.1","pcp-import-iostat2pcp":"3.11.9-5.8.1","pcp-import-mrtg2pcp":"3.11.9-5.8.1","pcp-import-sar2pcp":"3.11.9-5.8.1","perl-PCP-LogImport":"3.11.9-5.8.1","perl-PCP-LogSummary":"3.11.9-5.8.1","perl-PCP-MMV":"3.11.9-5.8.1","perl-PCP-PMDA":"3.11.9-5.8.1","python-pcp":"3.11.9-5.8.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15-LTSS","name":"pcp","purl":"pkg:rpm/suse/pcp&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.9-5.8.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpcp-devel":"3.11.9-5.8.1","libpcp3":"3.11.9-5.8.1","libpcp_gui2":"3.11.9-5.8.1","libpcp_import1":"3.11.9-5.8.1","libpcp_mmv1":"3.11.9-5.8.1","libpcp_trace2":"3.11.9-5.8.1","libpcp_web1":"3.11.9-5.8.1","pcp":"3.11.9-5.8.1","pcp-conf":"3.11.9-5.8.1","pcp-devel":"3.11.9-5.8.1","pcp-doc":"3.11.9-5.8.1","pcp-import-iostat2pcp":"3.11.9-5.8.1","pcp-import-mrtg2pcp":"3.11.9-5.8.1","pcp-import-sar2pcp":"3.11.9-5.8.1","perl-PCP-LogImport":"3.11.9-5.8.1","perl-PCP-LogSummary":"3.11.9-5.8.1","perl-PCP-MMV":"3.11.9-5.8.1","perl-PCP-PMDA":"3.11.9-5.8.1","python-pcp":"3.11.9-5.8.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15-LTSS","name":"pcp","purl":"pkg:rpm/suse/pcp&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.9-5.8.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libpcp-devel":"3.11.9-5.8.1","libpcp3":"3.11.9-5.8.1","libpcp_gui2":"3.11.9-5.8.1","libpcp_import1":"3.11.9-5.8.1","libpcp_mmv1":"3.11.9-5.8.1","libpcp_trace2":"3.11.9-5.8.1","libpcp_web1":"3.11.9-5.8.1","pcp":"3.11.9-5.8.1","pcp-conf":"3.11.9-5.8.1","pcp-devel":"3.11.9-5.8.1","pcp-doc":"3.11.9-5.8.1","pcp-import-iostat2pcp":"3.11.9-5.8.1","pcp-import-mrtg2pcp":"3.11.9-5.8.1","pcp-import-sar2pcp":"3.11.9-5.8.1","perl-PCP-LogImport":"3.11.9-5.8.1","perl-PCP-LogSummary":"3.11.9-5.8.1","perl-PCP-MMV":"3.11.9-5.8.1","perl-PCP-PMDA":"3.11.9-5.8.1","python-pcp":"3.11.9-5.8.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15","name":"pcp","purl":"pkg:rpm/suse/pcp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.11.9-5.8.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for pcp fixes the following issues:\n\nSecurity issue fixed:\n\n- CVE-2019-3696: Fixed a local privilege escalation in migrate_tempdirs() (bsc#1153921).\n- CVE-2019-3695: Fixed a local privilege escalation of the pcp user during package update (bsc#1152763).\n\nNon-security issue fixed:\n\n- Fixed an dependency issue with pcp2csv (bsc#1129991).\n","id":"SUSE-SU-2020:0357-1","modified":"2020-02-07T09:34:12Z","published":"2020-02-07T09:34:12Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2020/suse-su-20200357-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1129991"},{"type":"REPORT","url":"https://bugzilla.suse.com/1152763"},{"type":"REPORT","url":"https://bugzilla.suse.com/1153921"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-3695"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-3696"}],"related":["CVE-2019-3695","CVE-2019-3696"],"summary":"Security update for pcp","upstream":["CVE-2019-3695","CVE-2019-3696"]}