SUSE SLES12 Security Update : libzypp, zypper (SUSE-SU-2024:2080-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:2080-1 advisory. - CVE-2017-9271: Fixed proxy credentials written to log files bsc1050625. Tenable has extracted the preceding description block directly fro...

SUSE-SU-2024:2080-1 Security update for libzypp, zypper

This update for libzypp, zypper fixes the following issues: - CVE-2017-9271: Fixed proxy credentials written to log files bsc1050625. The following non-security bugs were fixed: - clean: Do not report an error if no repos are defined at all bsc1223971...

SUSE: Security Advisory (SUSE-SU-2024:2080-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2021:0109-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2021:0956-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2021:0770-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for libzypp, (openSUSE-SU-2021:0059-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE SLES15 Security Update : libzypp, zypper (SUSE-SU-2021:0956-1)

This update for libzypp, zypper fixes the following issues : Update zypper to version 1.14.43 : doc: give more details about creating versioned package locks bsc1181622 man: Document synonymously used patch categories bsc1179847 Fix source-download commands help bsc1180663 man: Recommend to use t...

SUSE SLES15 Security Update : libsolv, libzypp, yast2-installation, zypper (SUSE-SU-2021:0770-1)

This update for libsolv, libzypp, yast2-installation, zypper fixes the following issues : Update zypper to version 1.14.43 : doc: give more details about creating versioned package locks bsc1181622 man: Document synonymously used patch categories bsc1179847 Fix source-download commnds help...

Fedora 33 : libzypp / zypper (2021-ebc1c35c5d)

The remote Fedora 33 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2021-ebc1c35c5d advisory. - The commandline package update tool zypper writes HTTP proxy credentials into its logfile, allowing local attackers to gain access to proxies used...

openSUSE Security Update : libzypp / zypper (openSUSE-2021-59)

This update for libzypp, zypper fixes the following issues : Update zypper to version 1.14.41 Update libzypp to 17.25.4 - CVE-2017-9271: Fixed information leak in the log file bsc1050625 bsc1177583 - RepoManager: Force refresh if repo url has changed bsc1174016 - RepoManager: Carefully tidy up th...

CVE-2017-9271

The commandline package update tool zypper writes HTTP proxy credentials into its logfile, allowing local attackers to gain access to proxies used...

CVE-2017-9271

CVE-2017-9271 affects the zypper commandline package update tool (libzypp) where HTTP proxy credentials can be written to logs, enabling local attackers to access proxy credentials. The CVE is discussed across multiple advisories and open vulnerability records. Public references in the provided d...

CVE-2017-9271

The commandline package update tool zypper writes HTTP proxy credentials into its logfile, allowing local attackers to gain access to proxies used...

CVE-2017-9271 proxy credentials written to log files by zypper

The commandline package update tool zypper writes HTTP proxy credentials into its logfile, allowing local attackers to gain access to proxies used...