Lucene search
PRIOn knowledge basePRION:CVE-2016-5746HistorySep 26, 2016 - 3:59 p.m.
Design/Logic Flaw
2016-09-2615:59:00
PRIOn knowledge base
www.prio-n.com
1
libstorage, libstorage-ng, and yast-storage improperly store passphrases for encrypted storage devices in a temporary file on disk, which might allow local users to obtain sensitive information by reading the file, as demonstrated by /tmp/libstorage-XXXXXX/pwdf.
References
lists.opensuse.org/opensuse-updates/2016-09/msg00032.html
www.securityfocus.com/bid/93169
bugzilla.suse.com/show_bug.cgi?id=986971
github.com/openSUSE/libstorage-ng/pull/123
github.com/openSUSE/libstorage/pull/162
github.com/openSUSE/libstorage/pull/163
github.com/yast/yast-storage/pull/223
github.com/yast/yast-storage/pull/224
github.com/yast/yast-storage/pull/226
github.com/yast/yast-storage/pull/227
Related
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2016:2189-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:2355-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2016:2353-1)
2021-06-09 00:00:00
nessus
nessus
SUSE SLED12 / SLES12 Security Update : libstorage (SUSE-SU-2016:2189-1)
2016-09-02 00:00:00
SUSE SLES12 Security Update : libstorage (SUSE-SU-2016:2355-1)
2016-09-26 00:00:00
openSUSE Security Update : libstorage (openSUSE-2016-1062)
2016-09-09 00:00:00
nvd
nvd
CVE-2016-5746
2016-09-26 15:59:00
cve
cve
CVE-2016-5746
2016-09-26 15:59:00
cvelist
cvelist
CVE-2016-5746
2016-09-26 15:00:00