6 matches found
SUSE: Security Advisory (SUSE-SU-2018:2898-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:2898-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : smt, yast2-smt (SUSE-SU-2018:2898-2)
This update for yast2-smt to 3.0.14 and smt to 3.0.37 fixes the following issues : These security issues were fixed in SMT : CVE-2018-12471: Xml External Entity processing in the RegistrationSharing modules allowed to read arbitrary file read bsc1103809. CVE-2018-12470: SQL injection in...
CVE-2018-12470 SQL injection in RegistrationSharing module
A SQL Injection in the RegistrationSharing module of SUSE Linux SMT allows remote attackers to cause execute arbitrary SQL statements. Affected releases are SUSE Linux SMT: versions prior to 3.0.37...
CVE-2018-12470
SUSE SMT contains a SQL Injection vulnerability in the RegistrationSharing module (CVE-2018-12470). Affected: SUSE Linux SMT prior to version 3.0.37. Root cause: insecure SQL handling allows remote attackers to execute arbitrary SQL statements. Impact: remote code execution at the SQL layer with ...
SUSE SLES12 Security Update : smt, yast2-smt (SUSE-SU-2018:2898-1)
This update for yast2-smt to 3.0.14 and smt to 3.0.37 fixes the following issues : These security issues were fixed in SMT : CVE-2018-12471: Xml External Entity processing in the RegistrationSharing modules allowed to read arbitrary file read bsc1103809. CVE-2018-12470: SQL injection in...