openSUSE Security Update : yast2-users (openSUSE-2016-555)
Critical Nessus Plugin ID 90907
SynopsisThe remote openSUSE host is missing a security update.
Descriptionyast2-users was updated to fix one security issue.
This security issue was fixed :
- CVE-2016-1601: Empty passwords fields in /etc/shadow after SLES 12 SP1 autoyast installation (bsc#974220).
This update includes a script that fixes installations that we're affected by this problem. It is run automatically upon installing the update.
This non-security issue was fixed :
- bsc#971804: Set root password correctly when using a minimal profile
This update was imported from the SUSE:SLE-12-SP1:Update update project.
SolutionUpdate the affected yast2-users packages.