90 matches found
EUVD-2018-11321
Malware in sbrugna...
EUVD-2018-11323
Malware in sbrugna...
EUVD-2018-11324
Malware in sbrugna...
EUVD-2018-11322
Malware in sbrugna...
EUVD-2022-48063
Malicious code in bioql PyPI...
OPENSUSE-SU-2024:11415-1 supportutils-3.1.17-2.2 on GA media
These are all security issues fixed in the supportutils-3.1.17-2.2 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:12970-1 supportutils-3.1.25-1.1 on GA media
These are all security issues fixed in the supportutils-3.1.25-1.1 package on the GA media of openSUSE Tumbleweed...
openSUSE: Security Advisory for supportutils (SUSE-SU-2023:3822-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2023:3822-2 Security update for supportutils
This update for supportutils fixes the following issues: Security fixes: - CVE-2022-45154: Removed iSCSI passwords bsc1207598. Other Fixes: - Changes in version 3.1.26 + powerpc plugin to collect the slots and active memory bsc1210950 + A Cleartext Storage of Sensitive Information vulnerability...
SUSE SLES15 Security Update : supportutils (SUSE-SU-2023:3803-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:3803-1 advisory. - A Cleartext Storage of Sensitive Information vulnerability in suppportutils of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Serv...
SUSE: Security Advisory (SUSE-SU-2023:3822-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2023:3803-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2023:3822-1 Security update for supportutils
This update for supportutils fixes the following issues: Security fixes: - CVE-2022-45154: Removed iSCSI passwords bsc1207598. Other Fixes: - Changes in version 3.1.26 + powerpc plugin to collect the slots and active memory bsc1210950 + A Cleartext Storage of Sensitive Information vulnerability...
SUSE: Security Advisory (SUSE-SU-2023:2465-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : supportutils (SUSE-SU-2023:2465-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:2465-1 advisory. - A Cleartext Storage of Sensitive Information vulnerability in suppportutils of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Serv...
SUSE-SU-2023:2465-1 Security update for supportutils
This update for supportutils fixes the following issues: Security fixes: - CVE-2022-45154: Removed iSCSI passwords from supportconfig archive bsc1207598. Bug fixes: - Fixed missing status detail for apparmor bsc1196933 - Corrected invalid argument list in docker.txt bsc1206608 - Changed...
CVE-2022-45154
A Cleartext Storage of Sensitive Information vulnerability in suppportutils of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 15 SP3 allows attackers that get access to the support logs to gain knowledge of the stored credentials This issue affects:...
Cross site scripting
A Cleartext Storage of Sensitive Information vulnerability in suppportutils of SUSE Linux Enterprise Server 12, SUSE Linux Enterprise Server 15, SUSE Linux Enterprise Server 15 SP3 allows attackers that get access to the support logs to gain knowledge of the stored credentials This issue affects:...
SUSE CVE-2018-19636
Supportutils, before version 3.1-5.7.1, when run with command line argument -A searched the file system for a ndspath binary. If an attacker provides one at an arbitrary location it is executed with root privileges...
SUSE CVE-2018-19638
In supportutils, before version 3.1-5.7.1 and if pacemaker is installed on the system, an unprivileged user could have overwritten arbitrary files in the directory that is used by supportutils to collect the log files...