vulnerability
SUSE: CVE-2017-9271: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:L/Au:N/C:P/I:N/A:N) | Mar 1, 2018 | Jan 16, 2021 | Oct 22, 2021 |
Severity
2
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:N)
Published
Mar 1, 2018
Added
Jan 16, 2021
Modified
Oct 22, 2021
Description
The commandline package update tool zypper writes HTTP proxy credentials into its logfile, allowing local attackers to gain access to proxies used.
Solution(s)
suse-upgrade-libsigc-2-develsuse-upgrade-libsigc-2_0-0suse-upgrade-libsolv-develsuse-upgrade-libsolv-toolssuse-upgrade-libyui-ncurses-pkg-develsuse-upgrade-libyui-ncurses-pkg-docsuse-upgrade-libyui-ncurses-pkg9suse-upgrade-libyui-qt-pkg-develsuse-upgrade-libyui-qt-pkg-docsuse-upgrade-libyui-qt-pkg9suse-upgrade-libzyppsuse-upgrade-libzypp-develsuse-upgrade-libzypp-devel-docsuse-upgrade-perl-solvsuse-upgrade-python-solvsuse-upgrade-python3-solvsuse-upgrade-ruby-solvsuse-upgrade-yast2-installationsuse-upgrade-yast2-pkg-bindingssuse-upgrade-zyppersuse-upgrade-zypper-aptitudesuse-upgrade-zypper-logsuse-upgrade-zypper-needs-restarting
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.