Vulnerability & Exploit Database

Back to search

SUSE: CVE-2017-9274: SUSE Linux Security Advisory

Severity CVSS Published Added Modified
9 (AV:N/AC:M/Au:N/C:C/I:C/A:C) December 08, 2017 December 08, 2017 April 18, 2018

Description

A shell command injection in the obs-service-source_validator before 0.7 could be used to execute code as the packager when checking RPM SPEC files with specific macro constructs.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

suse-upgrade-build