6 matches found
SUSE CVE-2018-17956
In yast2-samba-provision up to and including version 1.0.1 the password for samba shares was provided on the command line to tools used by yast2-samba-provision, allowing local attackers to read them in the process list...
openSUSE: Security Advisory for yast2-samba-provision (SUSE-SU-2022:3199-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE: Security Advisory (SUSE-SU-2022:3199-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES15 / openSUSE 15 Security Update : yast2-samba-provision (SUSE-SU-2022:3199-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2022:3199-1 advisory. Security issue fixed: - CVE-2018-17956: Fixed a credentials leak bsc1117597. Non-Security issues fixed: - Stop packaging docdi...
CVE-2018-17956 Password exposed in process listing
In yast2-samba-provision up to and including version 1.0.1 the password for samba shares was provided on the command line to tools used by yast2-samba-provision, allowing local attackers to read them in the process list...
CVE-2018-17956
CVE-2018-17956 affects the yast2-samba-provision component. Up to and including version 1.0.1, it leaked Samba-share passwords by passing them on the command line to tools used by yast2-samba-provision, enabling local attackers to read credentials in the process list. Several connected advisories...