rpm package
opensuse/yast2-users&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/yast2-users&distro=openSUSE%20Tumbleweed
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-1601 | Cri | 9.8 | < 3.2.6-1.1 | 3.2.6-1.1 | Apr 26, 2016 | yast2-users before 3.1.47, as used in SUSE Linux Enterprise 12 SP1, does not properly set empty password fields in /etc/shadow during an AutoYaST installation when the profile does not contain inst-sys users, which might allow attackers to have unspecified impact via unknown vect |
- affected < 3.2.6-1.1fixed 3.2.6-1.1
yast2-users before 3.1.47, as used in SUSE Linux Enterprise 12 SP1, does not properly set empty password fields in /etc/shadow during an AutoYaST installation when the profile does not contain inst-sys users, which might allow attackers to have unspecified impact via unknown vect