SUSE Studio Onsite 1.3.x before 1.3.6 and SUSE Studio Extension for System z 1.3 uses "static" secret tokens, which has unspecified impact and vectors.Referenceshttps://www.suse.com/support/update/announcement/2014/suse-su-20140254-1.htmlhttp://secunia.com/advisories/57050
