| Revision Date: | 2014-05-26 | Version: | 13 | | Title: | ELSA-2012:0958: sos security, bug fix, and enhancement update (Low) | | Description: | The sosreport utility in the Red Hat sos package before 2.2-29 does not remove the root user password information from the Kickstart configuration file (/root/anaconda-ks.cfg) when creating an archive of debugging information, which might allow attackers to obtain passwords or password hashes. | | Family: | unix | Class: | patch | | Status: | ACCEPTED | Reference(s): | CVE-2012-2664
ELSA-2012:0958-04
| | Platform(s): | Oracle Linux 6
| Product(s): | sos
| | Definition Synopsis | | sos is earlier than 0:2.2-29.el6 AND Oracle Linux 6.x
|
|