Back to bug 1326242
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-04-12 08:53:59 UTC | CC | security-response-team | |
| Red Hat Bugzilla | 2016-04-12 08:53:59 UTC | Doc Type | --- | Bug Fix |
| Adam Mariš | 2016-04-12 09:09:39 UTC | Blocks | 1325942 | |
| Adam Mariš | 2016-04-12 09:10:36 UTC | CC | jcline, rbarlow | |
| Adam Mariš | 2016-04-12 14:33:15 UTC | Summary | EMBARGOED pulp: Agent certificate containing private key is stored in world-readable file | EMBARGOED CVE-2016-3112 pulp: Agent certificate containing private key is stored in world-readable file |
| Alias | CVE-2016-3112 | |||
| Randy Barlow | 2016-04-12 16:00:09 UTC | Flags | needinfo?(jcline) | |
| Jeremy Cline | 2016-04-12 16:29:43 UTC | Attachment #1146527 Attachment is obsolete | 0 | 1 |
| Flags | needinfo?(jcline) | |||
| Jeremy Cline | 2016-04-12 16:30:42 UTC | CC | amaris | |
| Attachment #1146538 Flags | review?(amaris) | |||
| Randy Barlow | 2016-04-13 14:20:09 UTC | CC | sean.myers | |
| Kurt Seifried | 2016-04-13 16:50:11 UTC | Whiteboard | impact=moderate,public=no,reported=20160408,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cwe=CWE-732,rhn_satellite_6/pulp=new,rhui-2/pulp=new | impact=moderate,public=20160413,reported=20160408,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cwe=CWE-732,rhn_satellite_6/pulp=new,rhui-2/pulp=new |
| Kurt Seifried | 2016-04-13 16:50:36 UTC | Summary | EMBARGOED CVE-2016-3112 pulp: Agent certificate containing private key is stored in world-readable file | CVE-2016-3112 pulp: Agent certificate containing private key is stored in world-readable file |
| Kurt Seifried | 2016-04-13 16:50:40 UTC | Group | security, qe_staff | |
| Kurt Seifried | 2016-04-13 18:32:02 UTC | Whiteboard | impact=moderate,public=20160413,reported=20160408,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cwe=CWE-732,rhn_satellite_6/pulp=new,rhui-2/pulp=new | impact=moderate,public=20160413,reported=20160408,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cwe=CWE-732,rhn_satellite_6/pulp=affected,rhui-2/pulp=wontfix |
| Kurt Seifried | 2016-04-13 18:35:06 UTC | Depends On | 1326913 | |
| Kurt Seifried | 2016-04-13 18:36:15 UTC | Depends On | 1326919 | |
| Kurt Seifried | 2016-05-05 20:31:53 UTC | CC | jmatthew, tsanders | |
| Kurt Seifried | 2016-09-19 18:57:10 UTC | Doc Text | It was found that the private key for the agent certificate was contained in a world-readable file. A local user could possibly use this flaw to gain access to the private key information in the file. | |
| Kurt Seifried | 2016-09-19 19:02:56 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2016-09-19 15:02:56 UTC | |||
| Adam Mariš | 2016-11-08 16:03:46 UTC | CC | amaris | |
| Adam Mariš | 2017-01-05 11:14:45 UTC | Attachment #1146538 Flags | review?(amaris) | |
| Product Security DevOps Team | 2019-09-29 13:46:44 UTC | Whiteboard | impact=moderate,public=20160413,reported=20160408,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cwe=CWE-732,rhn_satellite_6/pulp=affected,rhui-2/pulp=wontfix |
Back to bug 1326242