Описание
ELSA-2013-1121: sos security update (LOW)
[1.7-9.62.0.1.el5_9.1]
- add patch to remove all sysrq echo commands from sysreport.legacy (John Sobecki) [orabug 11061754]
- comment out rh-upload-core and README.rh-upload-core in specfile
[1.7-9.62.el5_9.1]
- Remove anaconda-ks.cfg collection from general plug-in Resolves: bz965807
[1.7-9.62.el5_9]
- Elide passwords in anaconda-ks.cfg and yum.repos.d Resolves: bz965807
Обновленные пакеты
Oracle Linux 5
Oracle Linux ia64
sos
1.7-9.62.0.1.el5_9.1
Oracle Linux x86_64
sos
1.7-9.62.0.1.el5_9.1
Oracle Linux i386
sos
1.7-9.62.0.1.el5_9.1
Связанные CVE
Связанные уязвимости
The sosreport utility in the Red Hat sos package before 2.2-29 does not remove the root user password information from the Kickstart configuration file (/root/anaconda-ks.cfg) when creating an archive of debugging information, which might allow attackers to obtain passwords or password hashes.
The sosreport utility in the Red Hat sos package before 2.2-29 does not remove the root user password information from the Kickstart configuration file (/root/anaconda-ks.cfg) when creating an archive of debugging information, which might allow attackers to obtain passwords or password hashes.
The sosreport utility in the Red Hat sos package before 2.2-29 does not remove the root user password information from the Kickstart configuration file (/root/anaconda-ks.cfg) when creating an archive of debugging information, which might allow attackers to obtain passwords or password hashes.
ELSA-2012-0958: sos security, bug fix, and enhancement update (LOW)
Уязвимость операционной системы CentOS, позволяющая удаленному злоумышленнику нарушить конфиденциальность защищаемой информации