11 matches found
SUSE CVE-2017-1000469
Cobbler version up to 2.8.2 is vulnerable to a command injection vulnerability in the "add repo" component resulting in arbitrary code execution as root user...
SUSE: Security Advisory (SUSE-SU-2018:1741-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 28 : cobbler (2018-52ee188215)
Update to 2.8.3 - Fix security issue Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL...
openSUSE: Security Advisory for cobbler (openSUSE-SU-2018:1770-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE SLES11 Security Update : cobbler (SUSE-SU-2018:1741-1)
This update for cobbler fixes the following issues : - CVE-2017-1000469: Escape shell parameters provided by the user for the reposync action. bsc1074594 - Fix for calling koan with virttype kvm. bsc1090205 Note that Tenable Network Security has extracted the preceding description block directly...
Security update for cobbler (moderate)
This update for cobbler fixes the following issues: The following security issue has been fixed: - CVE-2017-1000469: Escape shell parameters provided by the user for the reposync action. bsc1074594 Additionally, the following non-security issues have been fixed: - Fix signature for SLES15...
openSUSE Security Update : cobbler (openSUSE-2018-655)
This update for cobbler fixes the following issues : The following security issue has been fixed : - CVE-2017-1000469: Escape shell parameters provided by the user for the reposync action. bsc1074594 Additionally, the following non-security issues have been fixed : - Fix signature for SLES15...
SUSE-SU-2018:1736-1 Security update for cobbler
This update for cobbler fixes the following issues: The following security issue has been fixed: - CVE-2017-1000469: Escape shell parameters provided by the user for the reposync action. bsc1074594 Additionally, the following non-security issues have been fixed: - Fix signature for SLES15...
SUSE-SU-2018:1741-1 Security update for cobbler
This update for cobbler fixes the following issues: - CVE-2017-1000469: Escape shell parameters provided by the user for the reposync action. bsc1074594 - Fix for calling koan with virttype kvm. bsc1090205...
CVE-2017-1000469
Cobbler version up to 2.8.2 is vulnerable to a command injection vulnerability in the "add repo" component resulting in arbitrary code execution as root user...
CVE-2017-1000469
CVE-2017-1000469 affects Cobbler up to 2.8.2, with a command-injection vulnerability in the add_repo path that can lead to arbitrary code execution as root due to improper input handling. Connected advisories show openSUSE/SUSE updates fixing this by upgrading Cobbler to version 3.1.1 (openSUSE-2...