40 matches found
CentOS Update for yum-NetworkManager-dispatcher CESA-2018:2285 centos7
Check the version of yum-NetworkManager-dispatcher SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Amazon Linux AMI : yum-utils (ALAS-2018-1057)
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path...
Important: yum-utils
Issue Overview: A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system...
RHEL 6 : yum-utils (RHSA-2018:2284)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2284 advisory. - yum-utils: reposync: improper path validation may lead to directory traversal CVE-2018-10897 Note that Nessus has not tested for this issue but has...
CVE-2018-10897
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path...
Path traversal
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path...
CVE-2018-10897
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path...
CVE-2018-10897
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path...
CVE-2018-10897
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path...
CVE-2018-10897
CVE-2018-10897 affects reposync, a component of yum-utils. The vulnerability arises from improper path sanitization in remote repository configuration files, enabling a directory traversal that could allow copying files outside the destination directory. If reposync runs with elevated privileges,...
CVE-2018-10897
Removed by vendor...
Important: Red Hat Security Advisory: yum-utils security update
An update for yum-utils is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...
yum-utils: reposync: improper path validation may lead to directory traversal
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path...
yum-utils: reposync: improper path validation may lead to directory traversal
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path...
PT-2018-2217 · Yum +2 · Yum-Utils +2
Name of the Vulnerable Software and Affected Versions: yum-utils versions 1.1.31 and older Description: A directory traversal issue exists in reposync, a part of yum-utils, due to insufficient path sanitization in remote repository configuration files. This allows an attacker controlling a...
CVE-2018-10897
A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted system via path...
SUSE SLES11 Security Update : cobbler (SUSE-SU-2018:1741-1)
This update for cobbler fixes the following issues : - CVE-2017-1000469: Escape shell parameters provided by the user for the reposync action. bsc1074594 - Fix for calling koan with virttype kvm. bsc1090205 Note that Tenable Network Security has extracted the preceding description block directly...
Security update for cobbler (moderate)
This update for cobbler fixes the following issues: The following security issue has been fixed: - CVE-2017-1000469: Escape shell parameters provided by the user for the reposync action. bsc1074594 Additionally, the following non-security issues have been fixed: - Fix signature for SLES15...
openSUSE Security Update : cobbler (openSUSE-2018-655)
This update for cobbler fixes the following issues : The following security issue has been fixed : - CVE-2017-1000469: Escape shell parameters provided by the user for the reposync action. bsc1074594 Additionally, the following non-security issues have been fixed : - Fix signature for SLES15...
SUSE-SU-2018:1741-1 Security update for cobbler
This update for cobbler fixes the following issues: - CVE-2017-1000469: Escape shell parameters provided by the user for the reposync action. bsc1074594 - Fix for calling koan with virttype kvm. bsc1090205...