MiracleLinux 4 : setroubleshoot-3.0.47-6.1.0.1.AXS4 (AXSA:2015-107:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2015-107:01 advisory. Description: setroubleshoot GUI. Application that allows you to view setroubleshoot-server messages. Provides tools to help diagnose SELinux problems. When AV...

SOL16428 - setroubleshoot vulnerability CVE-2015-1815

Note: As of February 17, 2015, AskF5 Security Advisory articles include the Severity value. Security Advisory articles published before this date do not list a Severity value. Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL995...

Fedora 21 : setroubleshoot-3.2.22-1.fc21 (2015-4838)

Security fix for CVE-2015-1815 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

Fedora Update for setroubleshoot FEDORA-2015-4833

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 20 : setroubleshoot-3.2.17-2.fc20 (2015-4833)

Security fix for CVE-2015-1815 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

Fedora 22 : setroubleshoot-3.2.22-1.fc22 (2015-4792)

Security fix for CVE-2015-1815 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

CentOS Update for setroubleshoot CESA-2015:0729 centos7

Check the version of setroubleshoot SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882141";...

CVE-2015-1815

The getrpmnvrbyfilepathtemporary function in util.py in setroubleshoot before 3.2.22 allows remote attackers to execute arbitrary commands via shell metacharacters in a file name...

CVE-2015-1815

Summary: CVE-2015-1815 affects setroubleshoot’s get_rpm_nvr_by_file_path_temporary in util.py, where shells metacharacters in a file name can lead to remote command execution. Concrete details from connected advisories show affected packages across distros (e.g., Fedora setroubleshoot 3.2.x, Mira...

Scientific Linux Security Update : setroubleshoot on SL5.x, SL6.x, SL7.x i386/x86_64 (20150326)

It was found that setroubleshoot did not sanitize file names supplied in a shell command look-up for RPMs associated with access violation reports. An attacker could use this flaw to escalate their privileges on the system by supplying a specially crafted file to the underlying shell command...

RedHat Update for setroubleshoot RHSA-2015:0729-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...