rpm package
suse/yast2-rmt&distro=SUSE Linux Enterprise Module for Server Applications 15
pkg:rpm/suse/yast2-rmt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-20105 | — | < 1.2.2-3.18.1 | 1.2.2-3.18.1 | Jan 27, 2020 | A Inclusion of Sensitive Information in Log Files vulnerability in yast2-rmt of SUSE Linux Enterprise Server 15; openSUSE Leap allows local attackers to learn the password if they can access the log file. This issue affects: SUSE Linux Enterprise Server 15 yast2-rmt versions prio | ||
| CVE-2018-17957 | — | < 1.1.2-3.11.1 | 1.1.2-3.11.1 | Dec 26, 2018 | The YaST2 RMT module for configuring the SUSE Repository Mirroring Tool (RMT) before 1.1.2 exposed MySQL database passwords on process commandline, allowing local attackers to access or corrupt the RMT database. |
- CVE-2018-20105Jan 27, 2020affected < 1.2.2-3.18.1fixed 1.2.2-3.18.1
A Inclusion of Sensitive Information in Log Files vulnerability in yast2-rmt of SUSE Linux Enterprise Server 15; openSUSE Leap allows local attackers to learn the password if they can access the log file. This issue affects: SUSE Linux Enterprise Server 15 yast2-rmt versions prio
- CVE-2018-17957Dec 26, 2018affected < 1.1.2-3.11.1fixed 1.1.2-3.11.1
The YaST2 RMT module for configuring the SUSE Repository Mirroring Tool (RMT) before 1.1.2 exposed MySQL database passwords on process commandline, allowing local attackers to access or corrupt the RMT database.