4 matches found
MiracleLinux 4 : rh-postgresql94-postgresql-9.4.5-1.AXS4 (AXSA:2015-867:02)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-867:02 advisory. PostgreSQL is an advanced Object-Relational database management system DBMS. The base postgresql package contains the client programs that you'll nee...
CVE-2021-25284
A flaw was found in salt. Webutils write passwords in cleartext to /var/log/salt/minion...
Unauthorised File Editing Or Replacement
salt has a flaw that can lead to unauthorized file editing or replacement. This is possible because it does not validate the file path input to the sed method. Therefore, it does not properly search and replace on given filename , leading to unintended unauthorized file editing or replacement...
security flaw
The cryptgensalt functions for BSDI-style extended DES-based and FreeBSD-sytle MD5-based password hashes in cryptblowfish 0.4.7 and earlier do not evenly and randomly distribute salts, which makes it easier for attackers to guess passwords from a stolen password file due to the increased number o...