EUVD-2019-4818

Malware in sbrugna...

CentOS 8 : osinfo-db and libosinfo (CESA-2019:3387)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:3387 advisory. - Libosinfo: osinfo-install-script option leaks password via command line argument CVE-2019-13313 Note that Nessus has not tested for this issue but has instead...

Amazon Linux 2 : libosinfo (ALAS-2020-1527)

The version of libosinfo installed on the remote host is prior to 1.1.0-5. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1527 advisory. A flaw was found in libosinfo, version 1.5.0, where the script for automated guest installations, 'osinfo- install-script', accep...

Scientific Linux Security Update : libosinfo on SL7.x x86_64 (20200407)

Libosinfo: osinfo-install-script option leaks password via command line argument C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid135815; scriptversion"1.3"; scriptsetattributeattribute:"pluginmodificationdate",...

CentOS 7 : libosinfo (RHSA-2020:1051)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:1051 advisory. - libosinfo 1.5.0 allows local users to discover credentials by listing a process, because credentials are passed to osinfo-install-script via the command line...

libosinfo security and bug fix update

1.1.0-5 - Resolves: rhbz1740212 - New defect found in libosinfo-1.1.0-4.el7 1.1.0-4 - Resolves: rhbz1727842 - CVE-2019-13313 libosinfo: osinfo-install-script option leaks password via command line argument...

Libosinfo: osinfo-install-script option leaks password via command line argument

A flaw was found in libosinfo, version 1.5.0, where the script for automated guest installations, 'osinfo-install-script', accepts user and admin passwords via command line arguments. This could allow guest passwords to leak to other system users via a process listing...

Libosinfo: osinfo-install-script option leaks password via command line argument

A flaw was found in libosinfo, version 1.5.0, where the script for automated guest installations, 'osinfo-install-script', accepts user and admin passwords via command line arguments. This could allow guest passwords to leak to other system users via a process listing...

EulerOS 2.0 SP5 : libosinfo (EulerOS-SA-2019-1888)

According to the version of the libosinfo package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - A flaw was found in libosinfo, version 1.5.0, where the script for automated guest installations, 'osinfo-install-script', accepts user and admin...

UBUNTU-CVE-2019-13313

libosinfo 1.5.0 allows local users to discover credentials by listing a process, because credentials are passed to osinfo-install-script via the command line...

CVE-2019-13313

libosinfo 1.5.0 allows local users to discover credentials by listing a process, because credentials are passed to osinfo-install-script via the command line...

CVE-2019-13313

libosinfo 1.5.0 allows local users to discover credentials by listing a process, because credentials are passed to osinfo-install-script via the command line...

PT-2019-13249 · Open Source +4 · Libosinfo +4

Name of the Vulnerable Software and Affected Versions: libosinfo version 1.5.0 Description: The issue allows local users to discover credentials by listing a process. This occurs because credentials are passed to osinfo-install-script via the command line. There is no information available about...