openSUSE Security Update : libuser (openSUSE-2015-529)

libuser was updated to fix on security issue. The following vulnerability was fixed : - CVE-2015-3246: local root exploit through passwd file handling boo937533 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

Scientific Linux Security Update : libuser on SL6.x i386/x86_64 (20150723)

Two flaws were found in the way the libuser library handled the /etc/passwd file. A local attacker could use an application compiled against libuser for example, userhelper to manipulate the /etc/passwd file, which could result in a denial of service or possibly allow the attacker to escalate the...

Fedora Update for libuser FEDORA-2015-12064

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for libuser (important)

libuser was updated to fix on security issue. The following vulnerability was fixed: CVE-2015-3246: local root exploit through passwd file handling boo937533...

[SECURITY] Fedora 21 Update: libuser-0.62-1.fc21

The libuser library implements a standardized interface for manipulating and administering user and group accounts. The library uses pluggable back-ends to interface to its data sources. Sample applications modeled after those included with the shadow password suite are included...

RedHat Update for libuser RHSA-2015:1482-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RedHat Update for libuser RHSA-2015:1483-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for libuser FEDORA-2015-12301

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OracleVM 3.3 : libuser (OVMSA-2015-0106)

The remote OracleVM system is missing necessary patches to address critical security updates : - Update CVE-2015-3246 patch based on review comments Resolves: 1235518 - Don&rsquo t use 512-bit RSA private keys in tests Related: 1235518 - Fix testsuite failures if more than one architecture is...

[SECURITY] Fedora 22 Update: libuser-0.62-1.fc22

The libuser library implements a standardized interface for manipulating and administering user and group accounts. The library uses pluggable back-ends to interface to its data sources. Sample applications modeled after those included with the shadow password suite are included...

Oracle Linux 6 : libuser (ELSA-2015-1482)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-1482 advisory. - Update CVE-2015-3246 patch based on review comments Resolves: 1235518 Tenable has extracted the preceding description block directly from the Oracle...

Libuser Local Denial of Service Vulnerability

libuser is a library of standard interfaces for manipulating and managing user and group accounts. A local denial of service vulnerability exists in libuser. A local attacker could exploit this vulnerability to crash the application and deny service to legitimate users...

Libuser Local Privilege Vulnerability

libuser is a library of standard interfaces for manipulating and managing user and group accounts. A local boost vulnerability exists in libuser. A local attacker can exploit this vulnerability to gain root privileges...

CentOS 6 : libuser (CESA-2015:1482)

Updated libuser packages that fix two security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for...

Libuser Library - Multiple Vulnerabilities

Libuser Library - Multiple Vulnerabilities Qualys Security Advisory CVE-2015-3245 userhelper chfn newline filtering CVE-2015-3246 libuser passwd file handling -- Summary ----------------------------------------------------------------- The libuser library implements a standardized interface for...

Qualys Security Advisory - CVE-2015-3245 userhelper - CVE-2015-3246 libuser

Hello, it is July 23, 2015, 17:00 UTC, the Coordinated Release Date for CVE-2015-3245 and CVE-2015-3246. Please find our advisory below, and our exploit attached. Qualys Security Advisory CVE-2015-3245 userhelper chfn newline filtering CVE-2015-3246 libuser passwd file handling -- Summary...

CentOS 7 : libuser (CESA-2015:1483)

Updated libuser packages that fix two security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for...

Libuser Library - Multiple Vulnerabilities

Qualys Security Advisory CVE-2015-3245 userhelper chfn newline filtering CVE-2015-3246 libuser passwd file handling -- Summary ----------------------------------------------------------------- The libuser library implements a standardized interface for manipulating and administering user and grou...

Libuser Library - Multiple Vulnerabilities

Exploit for linux platform in category dos / poc CVE-2015-3245 userhelper chfn newline filtering CVE-2015-3246 libuser passwd file handling -- Summary ----------------------------------------------------------------- The libuser library implements a standardized interface for manipulating and...

Scientific Linux Security Update : libuser on SL7.x x86_64 (20150723)

Two flaws were found in the way the libuser library handled the /etc/passwd file. A local attacker could use an application compiled against libuser for example, userhelper to manipulate the /etc/passwd file, which could result in a denial of service or possibly allow the attacker to escalate the...