SUSE-SU-2018:4209-1

Опубликовано: 20 дек. 2018

Источник: suse-cvrf

Описание

Security update for yast2-rmt

This update for yast2-rmt to version 1.1.12 fixes the following issues:

Security issue fixed:

CVE-2018-17957: Secure MySQL credentials by not exposing them on the command line (bsc#1117602)

Список пакетов

SUSE Linux Enterprise Module for Server Applications 15

yast2-rmt-1.1.2-3.11.1

Ссылки

https://www.suse.com/support/update/announcement/2018/suse-su-20184209-1/
Link for SUSE-SU-2018:4209-1
https://lists.suse.com/pipermail/sle-security-updates/2018-December/004991.html
E-Mail link for SUSE-SU-2018:4209-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1117602
SUSE Bug 1117602
https://www.suse.com/security/cve/CVE-2018-17957/
SUSE CVE CVE-2018-17957 page

Описание

The YaST2 RMT module for configuring the SUSE Repository Mirroring Tool (RMT) before 1.1.2 exposed MySQL database passwords on process commandline, allowing local attackers to access or corrupt the RMT database.

Затронутые продукты

SUSE Linux Enterprise Module for Server Applications 15:yast2-rmt-1.1.2-3.11.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-17957.html
CVE-2018-17957
https://bugzilla.suse.com/1117602
SUSE Bug 1117602

SUSE-SU-2018:4209-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Server Applications 15

Ссылки

Уязвимость: CVE-2018-17957

Описание

Затронутые продукты

Ссылки