11 matches found
SUSE-SU-2015:1361-1 Security update for osc
This update provides osc 0.152.0 with various fixes and improvements. This security issue was fixed: - CVE-2015-0778: Shell command injection via crafted service files. bsc901643 For a comprehensive list of changes, please refer to the package's change log...
Fedora Update for osc FEDORA-2015-4687
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 21 : osc-0.151.1-163.2.1.fc21 (2015-4482)
Security fix for CVE-2015-0778 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora 20 : osc-0.151.1-163.2.1.fc20 (2015-4549)
Security fix for CVE-2015-0778 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora Update for osc FEDORA-2015-4549
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 22 : osc-0.151.1-163.2.1.fc22 (2015-4687)
Security fix for CVE-2015-0778 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
CVE-2015-0778
osc before 0.151.0 allows remote attackers to execute arbitrary commands via shell metacharacters in a service file...
CVE-2015-0778
The CVE-2015-0778 entry corresponds to OSC tooling (osc before 0.151.0) vulnerable to shell metacharacters in a _service file, allowing remote command execution with the process’ privileges. Public advisories (Gentoo GLSA-201603-02; Fedora advisories 2015-4482/4549/4687; Fedora 22/21/20 mentions)...
openSUSE: Security Advisory for osc (openSUSE-SU-2015:0486-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : osc (openSUSE-2015-224)
osc was updated to fix a security issue and some non-security bugs. osc was updated to 0.151.0, fixing the following vulnerability : - fixed shell command injection via crafted service files CVE-2015-0778 boo901643 The following non-security bugs were fixed : - fix times when data comes from OBS...
Security update for osc (important)
osc was updated to fix a security issue and some non-security bugs. osc was updated to 0.151.0, fixing the following vulnerability: fixed shell command injection via crafted service files CVE-2015-0778 boo901643 The following non-security bugs were fixed: fix times when data comes from OBS backen...