VYPR

aaa_base

by OpenSUSE

CVEs (2)

  • CVE-2013-3713Jan 11, 2014
    risk 0.00cvss epss 0.00

    The image creation configuration in aaa_base before 16.26.1 for openSUSE 13.1 KDE adds the root user to the "users" group when installing from a live image, which allows local users to obtain sensitive information and possibly have other unspecified impacts, as demonstrated by…

  • CVE-2011-0468Apr 4, 2011
    risk 0.00cvss epss 0.00

    The aaa_base package before 11.3-8.9.1 in SUSE openSUSE 11.3, and before 11.4-54.62.1 in openSUSE 11.4, allows local users to gain privileges via shell metacharacters in a filename, related to tab expansion.