CLSA-2026:1778938368

[CLSA-2026:1778938368] trousers: Fix of 2 CVEs

Type:

security

Severity:

Important

Release date:

2026-05-16 14:46:02 UTC

Description:

- CVE-2020-24330: drop root gid in tcsd before dropping uid
- CVE-2020-24331: require tcsd.conf as root:tss with mode 0640

Updated packages:

trousers-0.3.14-2.amzn2.0.2.tuxcare.els1.i686.rpm
sha:54306ab693832422e7f3132e1538c332dd73d01abdd354397fac0587cea0173a
trousers-0.3.14-2.amzn2.0.2.tuxcare.els1.x86_64.rpm
sha:e21a4e4fe2d52ab32ac77f1c3629368eeeecbf27f097da4ed0e7c25dcc4546da
trousers-devel-0.3.14-2.amzn2.0.2.tuxcare.els1.x86_64.rpm
sha:c2d66fe59a4938fe398988f0fa70438d0a52ce4ddf4c39b68ac98939a0e55752
trousers-static-0.3.14-2.amzn2.0.2.tuxcare.els1.x86_64.rpm
sha:68734c1d4deb212e63150e956f67b24a5aedee897bbd66f2b588195824b17c8f

Notes:

This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.