Back to bug 1380852
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Bharti Kundal | 2016-09-30 19:10:50 UTC | CC | security-response-team | |
| Tomas Hoger | 2016-09-30 20:27:09 UTC | Summary | EMBARGOED Sensitive data can be exposed at the server level in domain mode | EMBARGOED EAP: Sensitive data can be exposed at the server level in domain mode |
| Bharti Kundal | 2016-10-03 13:30:39 UTC | Assignee | security-response-team | bkundal |
| Tomas Hoger | 2016-10-03 15:18:19 UTC | Assignee | bkundal | security-response-team |
| Summary | EMBARGOED EAP: Sensitive data can be exposed at the server level in domain mode | EMBARGOED CVE-2016-7061 EAP: Sensitive data can be exposed at the server level in domain mode | ||
| Alias | CVE-2016-7061 | |||
| Bharti Kundal | 2016-10-03 17:17:26 UTC | Whiteboard | impact=low,public=no,reported=20160923,source=redhat,cvss2=4.0/AV:N/AC:L/Au:S/C:P/I:N/A:N,eap-6/admin-cli=affected | impact=low,public=no,reported=20160923,source=redhat,cvss2=4.0/AV:N/AC:L/Au:S/C:P/I:N/A:N,eap-6/admin-cli=affected,eap-7/admin-cli=affected |
| Bharti Kundal | 2016-10-03 17:17:34 UTC | CC | jshepherd | |
| Bharti Kundal | 2016-10-03 17:23:21 UTC | Depends On | 1381324 | |
| Bharti Kundal | 2016-10-03 17:23:37 UTC | Depends On | 1381325 | |
| Chess Hazlett | 2016-10-03 17:31:54 UTC | CC | chazlett | |
| baranowb | 2016-10-07 09:01:27 UTC | CC | ehugonne | |
| Jason Shepherd | 2016-11-01 23:44:04 UTC | CC | bkundal | |
| Flags | needinfo?(bkundal) | |||
| Bharti Kundal | 2016-11-04 19:04:20 UTC | Blocks | 1392081 | |
| Bharti Kundal | 2016-11-07 01:33:22 UTC | Whiteboard | impact=low,public=no,reported=20160923,source=redhat,cvss2=4.0/AV:N/AC:L/Au:S/C:P/I:N/A:N,eap-6/admin-cli=affected,eap-7/admin-cli=affected | impact=low,public=20161107,reported=20160923,source=redhat,cvss2=4.0/AV:N/AC:L/Au:S/C:P/I:N/A:N,eap-6/admin-cli=affected,eap-7/admin-cli=affected |
| Bharti Kundal | 2016-11-07 01:33:29 UTC | Summary | EMBARGOED CVE-2016-7061 EAP: Sensitive data can be exposed at the server level in domain mode | CVE-2016-7061 EAP: Sensitive data can be exposed at the server level in domain mode |
| Bharti Kundal | 2016-11-07 01:33:37 UTC | Group | security, qe_staff | |
| Bharti Kundal | 2016-11-07 01:42:25 UTC | Flags | needinfo?(bkundal) | needinfo- |
| Jason Shepherd | 2016-11-07 03:32:37 UTC | Comment 1 is private | 1 | 0 |
| Bharti Kundal | 2017-01-13 17:25:53 UTC | Blocks | 1413131 | |
| Bharti Kundal | 2017-01-13 21:34:23 UTC | Doc Text | It was recovered that when configuring RBAC and marking information as sensitive,the users under Monitor role are able to view that information. | |
| Eric Christensen | 2017-01-16 14:16:35 UTC | Doc Text | It was recovered that when configuring RBAC and marking information as sensitive,the users under Monitor role are able to view that information. | It was discovered that when configuring RBAC and marking information as sensitive, users with a Monitor role are able to view the sensitive information. |
| Bharti Kundal | 2017-01-18 17:47:03 UTC | Whiteboard | impact=low,public=20161107,reported=20160923,source=redhat,cvss2=4.0/AV:N/AC:L/Au:S/C:P/I:N/A:N,eap-6/admin-cli=affected,eap-7/admin-cli=affected | impact=low,public=20161107,reported=20160923,source=redhat,cvss2=4.0/AV:N/AC:L/Au:S/C:P/I:N/A:N,cvss3=3.5/CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N,eap-6/admin-cli=affected,eap-7/admin-cli=affected |
| Bharti Kundal | 2017-12-04 09:07:07 UTC | Blocks | 1520314 | |
| Andrej Nemec | 2018-09-10 14:29:55 UTC | Fixed In Version | eap 7.0.4 | |
| Andrej Nemec | 2018-09-10 14:31:10 UTC | Whiteboard | impact=low,public=20161107,reported=20160923,source=redhat,cvss2=4.0/AV:N/AC:L/Au:S/C:P/I:N/A:N,cvss3=3.5/CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N,eap-6/admin-cli=affected,eap-7/admin-cli=affected | impact=low,public=20161107,reported=20160923,source=redhat,cvss2=4.0/AV:N/AC:L/Au:S/C:P/I:N/A:N,cvss3=3.5/CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N,cwe=CWE-200,eap-6/admin-cli=affected,eap-7/admin-cli=affected |
| PnT Account Manager | 2018-10-19 21:37:45 UTC | CC | bkundal | |
| Product Security DevOps Team | 2019-09-29 13:57:05 UTC | Whiteboard | impact=low,public=20161107,reported=20160923,source=redhat,cvss2=4.0/AV:N/AC:L/Au:S/C:P/I:N/A:N,cvss3=3.5/CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N,cwe=CWE-200,eap-6/admin-cli=affected,eap-7/admin-cli=affected | |
| PnT Account Manager | 2019-11-05 01:07:03 UTC | CC | psakar | |
| PnT Account Manager | 2020-10-16 22:24:59 UTC | CC | pgier | |
| Joshua Padman | 2021-10-21 11:47:30 UTC | Resolution | --- | ERRATA |
| Status | NEW | CLOSED | ||
| Last Closed | 2021-10-21 11:47:30 UTC |
Back to bug 1380852