Oval Definition:	oval:org.opensuse.security:def:20134436
Revision Date: 2022-05-20 Version: 1 Title: CVE-2013-4436 Description: The default configuration for salt-ssh in Salt (aka SaltStack) 0.17.0 does not validate the SSH host key of requests, which allows remote attackers to have unspecified impact via a man-in-the-middle (MITM) attack. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2013-4436 SUSE CVE-2013-4436 Platform(s): SUSE Linux Enterprise High Performance Computing 12 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 Product(s): Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 12 is installed OR SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed OR SUSE Linux Enterprise Server 12 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND Package Information python2-salt is affected OR salt is affected OR salt-api is affected OR salt-bash-completion is affected OR salt-cloud is affected OR salt-doc is affected OR salt-master is affected OR salt-minion is affected OR salt-proxy is affected OR salt-ssh is affected OR salt-standalone-formulas-configuration is affected OR salt-syndic is affected OR salt-zsh-completion is affected
BACK