Back to bug 1325934
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-04-11 12:53:28 UTC | CC | security-response-team | |
| Red Hat Bugzilla | 2016-04-11 12:53:28 UTC | Doc Type | --- | Bug Fix |
| Adam Mariš | 2016-04-11 13:08:50 UTC | Blocks | 1325942 | |
| Adam Mariš | 2016-04-12 14:19:25 UTC | CC | jcline, rbarlow | |
| Randy Barlow | 2016-04-12 14:32:48 UTC | Attachment #1145990 Attachment is obsolete | 0 | 1 |
| CC | amaris | |||
| Attachment #1146475 Flags | review?(amaris) | |||
| Randy Barlow | 2016-04-12 14:33:12 UTC | CC | sean.myers | |
| Kurt Seifried | 2016-04-13 16:50:07 UTC | Whiteboard | impact=moderate,public=no,reported=20160408,source=redhat,cvss2=4.7/AV:L/AC:H/Au:N/C:P/I:C/A:N,cwe=CWE-377,rhn_satellite_6/pulp=new,rhui-2/pulp=new | impact=moderate,public=20160413,reported=20160408,source=redhat,cvss2=4.7/AV:L/AC:H/Au:N/C:P/I:C/A:N,cwe=CWE-377,rhn_satellite_6/pulp=new,rhui-2/pulp=new |
| Kurt Seifried | 2016-04-13 16:50:27 UTC | Summary | EMBARGOED CVE-2016-3108 pulp: Insecure temporary file used when generating certificate for Pulp Nodes | CVE-2016-3108 pulp: Insecure temporary file used when generating certificate for Pulp Nodes |
| Kurt Seifried | 2016-04-13 16:50:30 UTC | Group | security, qe_staff | |
| Kurt Seifried | 2016-04-13 18:31:50 UTC | Whiteboard | impact=moderate,public=20160413,reported=20160408,source=redhat,cvss2=4.7/AV:L/AC:H/Au:N/C:P/I:C/A:N,cwe=CWE-377,rhn_satellite_6/pulp=new,rhui-2/pulp=new | impact=moderate,public=20160413,reported=20160408,source=redhat,cvss2=4.7/AV:L/AC:H/Au:N/C:P/I:C/A:N,cwe=CWE-377,rhn_satellite_6/pulp=affected,rhui-2/pulp=wontfix |
| Kurt Seifried | 2016-04-13 18:35:06 UTC | Depends On | 1326913 | |
| Kurt Seifried | 2016-04-13 18:36:15 UTC | Depends On | 1326919 | |
| Dennis Kliban | 2016-04-13 19:53:56 UTC | CC | dkliban | |
| Link ID | Pulp Redmine 1842 | |||
| pulp-infra | 2016-04-13 19:57:24 UTC | CC | mhrivnak | |
| pulp-infra | 2016-04-13 19:57:26 UTC | CC | bbouters | |
| Kurt Seifried | 2016-05-05 20:31:50 UTC | CC | jmatthew, tsanders | |
| Kurt Seifried | 2016-09-19 18:56:41 UTC | Doc Text | It was found that the private key for the node certificate was contained in a world-readable temporary file. A local user could possibly use this flaw to gain access to the private key information in the temporary file. | |
| Kurt Seifried | 2016-09-19 19:02:46 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2016-09-19 15:02:46 UTC | |||
| Adam Mariš | 2016-11-08 16:23:37 UTC | CC | amaris | |
| Adam Mariš | 2017-01-05 11:15:01 UTC | Attachment #1146475 Flags | review?(amaris) | |
| pulp-infra | 2017-06-05 18:22:10 UTC | CC | pcreech | |
| pulp-infra | 2017-06-05 18:22:13 UTC | CC | ttereshc | |
| Brian Bouterse | 2017-07-26 20:00:28 UTC | CC | bbouters | |
| pulp-infra | 2018-05-25 15:21:40 UTC | CC | rchan | |
| pulp-infra | 2018-09-19 15:16:32 UTC | CC | daviddavis | |
| Product Security DevOps Team | 2019-09-29 13:46:44 UTC | Whiteboard | impact=moderate,public=20160413,reported=20160408,source=redhat,cvss2=4.7/AV:L/AC:H/Au:N/C:P/I:C/A:N,cwe=CWE-377,rhn_satellite_6/pulp=affected,rhui-2/pulp=wontfix | |
| pulp-infra | 2020-10-05 14:27:43 UTC | CC | bmbouter | |
| pulp-infra | 2020-10-05 14:27:45 UTC | CC | ipanova | |
| pulp-infra | 2021-04-06 17:58:59 UTC | CC | ggainey |
Back to bug 1325934