Oval Definition:	oval:org.opensuse.security:def:20167091
Revision Date: 2022-05-20 Version: 1 Title: CVE-2016-7091 Description: sudo: It was discovered that the default sudo configuration on Red Hat Enterprise Linux and possibly other Linux implementations preserves the value of INPUTRC which could lead to information disclosure. A local user with sudo access to a restricted program that uses readline could use this flaw to read content from specially formatted files with elevated privileges provided by sudo. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2016-7091 SUSE CVE-2016-7091 Platform(s): SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND sudo is not affected Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND sudo is not affected Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND sudo is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP1 is installed OR SUSE Linux Enterprise Server 12 SP1 is installed OR SUSE Linux Enterprise Software Development Kit 12 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND sudo is not affected
BACK