CVE-2023-32184

A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen This issue affects opensuse-welcome: from 0.1 before 0.1.9+git.35.4b9444a...

OPENSUSE-SU-2024:13126-1 opensuse-welcome-0.1.9+git.35.4b9444a-1.1 on GA media

These are all security issues fixed in the opensuse-welcome-0.1.9+git.35.4b9444a-1.1 package on the GA media of openSUSE Tumbleweed...

openSUSE: Security Advisory for opensuse (openSUSE-SU-2023:0230-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the openSUSE-welcome package for the openSUSE operating system allows a hacker to execute arbitrary code.

The vulnerability of the openSUSE-welcome package in the openSUSE operating system is related to defects in the storage of service data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

CVE-2023-32184

A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen This issue affects opensuse-welcome: from 0.1 before 0.1.9+git.35.4b9444a...

CVE-2023-32184

A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen This issue affects opensuse-welcome: from 0.1 before 0.1.9+git.35.4b9444a...

Information disclosure

A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen This issue affects opensuse-welcome: from 0.1 before 0.1.9+git.35.4b9444a...

CVE-2023-32184

A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen This issue affects opensuse-welcome: from 0.1 before 0.1.9+git.35.4b9444a...

CVE-2023-32184

A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen This issue affects opensuse-welcome: from 0.1 before 0.1.9+git.35.4b9444a...

CVE-2023-32184

OpenSUSE opensuse-welcome CVE-2023-32184 is an insecure storage vulnerability impacting versions 0.1 before 0.1.9+git.35.4b9444a, allowing local attackers to execute code as the user running opensuse-welcome via a manipulated custom layout. The connected OSV entry confirms a fix in opensuse-welco...

openSUSE opensuse-welcome Security Vulnerabilities

openSUSE is a set of Linux-based free operating systems and open source community projects from SUSE Germany. A security vulnerability exists in opensuse-welcome versions 0.1 through 0.1.9+git.35.4b9444a, which stems from an issue with the insecure storage of sensitive information that could allo...

openSUSE 15 Security Update : opensuse-welcome (openSUSE-SU-2023:0230-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2023:0230-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

OPENSUSE-SU-2023:0230-1 Security update for opensuse-welcome

This update for opensuse-welcome fixes the following issues: - CVE-2023-32184: Fixed possible security issues when using the feature to change the Xfce desktop layout, caused by a fixed temporary file path used in /tmp/layout boo1213708...

Security update for opensuse-welcome (moderate)

openSUSE Security Update: Security update for opensuse-welcome Announcement ID: openSUSE-SU-2023:0230-1 Rating: moderate References: 1213708 Cross-References: CVE-2023-32184 Affected Products: openSUSE Backports SLE-15-SP4 An update that fixes one vulnerability is now available. Description: This...

openSUSE 15 Security Update : opensuse-welcome (openSUSE-SU-2023:0219-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2023:0219-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

OPENSUSE-SU-2023:0219-1 Security update for opensuse-welcome

This update for opensuse-welcome fixes the following issues: Update to version 0.1.9+git.35.4b9444a: CVE-2023-32184: panellayouter: use QTemporaryFile for applyLayout boo1213708. Translation updates...

SUSE CVE-2023-32184

A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen This issue affects opensuse-welcome: from 0.1 before 0.1.9+git.35.4b9444a...

Security update for opensuse-welcome (important)

openSUSE Security Update: Security update for opensuse-welcome Announcement ID: openSUSE-SU-2023:0219-1 Rating: important References: 1213708 Cross-References: CVE-2023-32184 Affected Products: openSUSE Backports SLE-15-SP5 An update that fixes one vulnerability is now available. Description: Thi...

PT-2023-5399 · Unknown +1 · Opensuse-Welcome +1

Name of the Vulnerable Software and Affected Versions: opensuse-welcome versions 0.1 through 0.1.9+git.35.4b9444a Description: A local attacker can execute code as the user that runs opensuse-welcome if a custom layout is chosen, due to an Insecure Storage of Sensitive Information vulnerability...