openSUSE Security Update : osc (openSUSE-2015-224)
High Nessus Plugin ID 81799
SynopsisThe remote openSUSE host is missing a security update.
Descriptionosc was updated to fix a security issue and some non-security bugs.
osc was updated to 0.151.0, fixing the following vulnerability :
- fixed shell command injection via crafted _service files CVE-2015-0778 boo#901643
The following non-security bugs were fixed :
- fix times when data comes from OBS backend
- support updateing the link in target package for submit requests
- various minor bugfixes
SolutionUpdate the affected osc package.