Lucene search
K

18 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-9269

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In libzypp before August 2018 GPG keys attached to YUM repositories were not correctly pinned, allowing malicious repository mirrors to silently downgrade to...

9.8CVSS7.8AI score0.0229EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:44 a.m.3 views

SUSE CVE-2017-9269

In libzypp before August 2018 GPG keys attached to YUM repositories were not correctly pinned, allowing malicious repository mirrors to silently downgrade to unsigned repositories with potential malicious content...

7.7CVSS6.9AI score0.0229EPSS
Exploits0References36
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2018:2690-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.0229EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2017:2701-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.3AI score0.57595EPSS
Exploits32References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2017:2040-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.0229EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2018:2814-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.0229EPSS
Exploits0References16
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2017:2264-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.0229EPSS
Exploits0References11
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2018:2688-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.9AI score0.0229EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.22 views

openSUSE Security Update : libzypp / zypper (openSUSE-2019-685)

This update for libzypp, zypper, libsolv provides the following fixes : Security fixes in libzypp : - CVE-2018-7685: PackageProvider: Validate RPMs before caching bsc1091624, bsc1088705 - CVE-2017-9269: Be sure bad packages do not stay in the cache bsc1045735 Changes in libzypp : - Update to...

9.8CVSS7.7AI score0.0229EPSS
Exploits0References30
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.38 views

SUSE SLED15 / SLES15 Security Update : libzypp, zypper (SUSE-SU-2018:2690-1)

This update for libzypp, zypper, libsolv provides the following fixes : Security fixes in libzypp : CVE-2018-7685: PackageProvider: Validate RPMs before caching bsc1091624, bsc1088705 CVE-2017-9269: Be sure bad packages do not stay in the cache bsc1045735 Changes in libzypp: Update to version...

9.8CVSS7.8AI score0.0229EPSS
Exploits0References33
OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.19 views

openSUSE: Security Advisory for libzypp (openSUSE-SU-2018:2739-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.8AI score0.0229EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2018/09/17 12:7 p.m.44 views

Security update for libzypp, zypper (important)

This update for libzypp, zypper, libsolv provides the following fixes: Security fixes in libzypp: - CVE-2018-7685: PackageProvider: Validate RPMs before caching bsc1091624, bsc1088705 - CVE-2017-9269: Be sure bad packages do not stay in the cache bsc1045735 Changes in libzypp: - Update to version...

7.5CVSS7.5AI score0.0229EPSS
Exploits0References28
Tenable Nessus
Tenable Nessus
added 2018/09/12 12:0 a.m.37 views

SUSE SLES12 Security Update : libzypp, zypper (SUSE-SU-2018:2688-1)

This update for libzypp, zypper fixes the following issues : libzypp security fixes : PackageProvider: Validate delta rpms before caching bsc1091624, bsc1088705, CVE-2018-7685 PackageProvider: Validate downloaded rpm package signatures before caching bsc1091624, bsc1088705, CVE-2018-7685 Be sure...

9.8CVSS7.2AI score0.0229EPSS
Exploits0References26
Tenable Nessus
Tenable Nessus
added 2018/08/31 12:0 a.m.33 views

SUSE SLES12 Security Update : libzypp, zypper (SUSE-SU-2018:2555-1)

This update for libzypp, zypper provides the following fixes : libzypp security fixes : CVE-2018-7685: Validate RPMs before caching bsc1091624, bsc1088705 CVE-2017-9269: Be sure bad packages do not stay in the cache bsc1045735 CVE-2017-7435, CVE-2017-7436, CVE-2017-9269: Fix repo gpg check...

9.8CVSS7.2AI score0.0229EPSS
Exploits0References23
CVE
CVE
added 2018/03/01 7:0 p.m.83 views

CVE-2017-9269

CVE-2017-9269 affects libzypp; before Aug 2018 GPG keys attached to YUM repositories were not properly pinned, allowing malicious mirrors to downgrade to unsigned repos with potentially malicious content. The issue originates from improper key pinning rather than repository signing verification. ...

9.8CVSS6.6AI score0.0229EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2018/03/01 7:0 p.m.30 views

CVE-2017-9269 lack of keypinning in libzypp could lead to repository switching

In libzypp before August 2018 GPG keys attached to YUM repositories were not correctly pinned, allowing malicious repository mirrors to silently downgrade to unsigned repositories with potential malicious content...

7.7CVSS9.4AI score0.0229EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/08/28 12:0 a.m.33 views

SUSE SLED12 / SLES12 Security Update : libzypp (SUSE-SU-2017:2264-1)

The Software Update Stack was updated to receive fixes and enhancements. libzypp : - CVE-2017-7435, CVE-2017-7436, CVE-2017-9269: Fix GPG check workflows, mainly for unsigned repositories and packages. bsc1045735, bsc1038984 - Fix gpg-pubkey release creation time computation. bsc1036659 - Update...

9.8CVSS8.1AI score0.0229EPSS
Exploits0References15
OpenVAS
OpenVAS
added 2017/08/10 12:0 a.m.22 views

openSUSE: Security Advisory for libzypp (openSUSE-SU-2017:2111-1)

The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9AI score0.0229EPSS
Exploits0References1
Rows per page
Query Builder