Back to bug 1390588
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Martin Prpič | 2016-11-01 13:27:19 UTC | Depends On | 1374700, 1374713, 1374717 | |
| Martin Prpič | 2016-11-01 13:28:58 UTC | Summary | redis: weak permissions on sensitive files | CVE-2016-2121 redis: weak permissions on sensitive files |
| Martin Prpič | 2016-11-01 13:29:52 UTC | Blocks | 1390589 | |
| Martin Prpič | 2016-11-01 13:30:43 UTC | Whiteboard | impact=low,public=20161101,reported=20161101,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cvss3=4/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,cwe=CWE-732,fedora-all/redis=affected,epel-all/redis=affected,openstack-6/redis=affected,openstack-7/redis=affected,openstack-8/redis=affected,openstack-9/redis=affected,openstack-10/redis=affected,openstack-7-optools/redis=affected,openstack-8-optools/redis=affected,openstack-9-optools/redis=affected,openstack-10-optools/redis=affected | impact=low,public=20161101,reported=20161101,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cvss3=4/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,cwe=CWE-732,fedora-all/redis=affected,epel-all/redis=affected,openstack-6/redis=affected,openstack-7/redis=affected,openstack-8/redis=affected,openstack-9/redis=affected,openstack-10/redis=affected,openstack-7-optools/redis=affected,openstack-8-optools/redis=affected,openstack-9-optools/redis=affected,openstack-10-optools/redis=affected,rhscl-2/rh-redis32-redis=affected |
| Martin Prpič | 2016-11-01 13:30:53 UTC | CC | hhorak, jorton, rcollet | |
| Garth Mollett | 2016-12-21 01:20:33 UTC | CC | gmollett | |
| Whiteboard | impact=low,public=20161101,reported=20161101,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cvss3=4/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,cwe=CWE-732,fedora-all/redis=affected,epel-all/redis=affected,openstack-6/redis=affected,openstack-7/redis=affected,openstack-8/redis=affected,openstack-9/redis=affected,openstack-10/redis=affected,openstack-7-optools/redis=affected,openstack-8-optools/redis=affected,openstack-9-optools/redis=affected,openstack-10-optools/redis=affected,rhscl-2/rh-redis32-redis=affected | impact=low,public=20161101,reported=20161101,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cvss3=4/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,cwe=CWE-732,fedora-all/redis=affected,epel-all/redis=affected,openstack-6/redis=affected,openstack-7/redis=affected,openstack-8/redis=affected,openstack-9/redis=affected,openstack-10/redis=affected,openstack-7-optools/redis=affected,openstack-8-optools/redis=affected,openstack-9-optools/redis=affected,rhscl-2/rh-redis32-redis=affected | ||
| Garth Mollett | 2017-05-22 04:12:39 UTC | CC | aortega, ayoung, chrisw, cvsbot-xmlrpc, jjoyce, jschluet, kbasil, lpeer, markmc, rbryant, sclewis, tdecacqu | |
| Whiteboard | impact=low,public=20161101,reported=20161101,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cvss3=4/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,cwe=CWE-732,fedora-all/redis=affected,epel-all/redis=affected,openstack-6/redis=affected,openstack-7/redis=affected,openstack-8/redis=affected,openstack-9/redis=affected,openstack-10/redis=affected,openstack-7-optools/redis=affected,openstack-8-optools/redis=affected,openstack-9-optools/redis=affected,rhscl-2/rh-redis32-redis=affected | impact=low,public=20161101,reported=20161101,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cvss3=4/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,cwe=CWE-732,fedora-all/redis=affected,epel-all/redis=affected,openstack-6/redis=wontfix,openstack-7/redis=wontfix,openstack-8/redis=wontfix,openstack-9/redis=wontfix,openstack-10/redis=affected,openstack-7-optools/redis=wontfix,openstack-8-optools/redis=wontfix,openstack-9-optools/redis=wontfix,rhscl-2/rh-redis32-redis=affected | ||
| Summer Long | 2017-06-08 08:18:57 UTC | Depends On | 1459799 | |
| Kurt Seifried | 2017-07-18 01:58:11 UTC | Depends On | 1472055, 1472054 | |
| Summer Long | 2017-09-25 23:56:52 UTC | Doc Text | A permissions flaw was found in redis, which sets weak permissions on certain files and directories that could potentially contain sensitive information. A local, unprivileged user could possibly use this flaw to access unauthorized system information. | |
| Summer Long | 2017-09-26 00:15:54 UTC | CC | slong | |
| Flags | needinfo?(hhorak) | |||
| Eric Christensen | 2017-09-26 16:19:52 UTC | Whiteboard | impact=low,public=20161101,reported=20161101,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cvss3=4/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,cwe=CWE-732,fedora-all/redis=affected,epel-all/redis=affected,openstack-6/redis=wontfix,openstack-7/redis=wontfix,openstack-8/redis=wontfix,openstack-9/redis=wontfix,openstack-10/redis=affected,openstack-7-optools/redis=wontfix,openstack-8-optools/redis=wontfix,openstack-9-optools/redis=wontfix,rhscl-2/rh-redis32-redis=affected | impact=low,public=20161101,reported=20161101,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,cwe=CWE-732,fedora-all/redis=affected,epel-all/redis=affected,openstack-6/redis=wontfix,openstack-7/redis=wontfix,openstack-8/redis=wontfix,openstack-9/redis=wontfix,openstack-10/redis=affected,openstack-7-optools/redis=wontfix,openstack-8-optools/redis=wontfix,openstack-9-optools/redis=wontfix,rhscl-2/rh-redis32-redis=affected |
| Eric Christensen | 2017-09-26 16:28:48 UTC | CC | sparks | |
| Tomas Hoger | 2017-10-26 21:31:33 UTC | Whiteboard | impact=low,public=20161101,reported=20161101,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,cwe=CWE-732,fedora-all/redis=affected,epel-all/redis=affected,openstack-6/redis=wontfix,openstack-7/redis=wontfix,openstack-8/redis=wontfix,openstack-9/redis=wontfix,openstack-10/redis=affected,openstack-7-optools/redis=wontfix,openstack-8-optools/redis=wontfix,openstack-9-optools/redis=wontfix,rhscl-2/rh-redis32-redis=affected | impact=low,public=20161101,reported=20161101,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,cwe=CWE-732,fedora-all/redis=affected,epel-all/redis=affected,openstack-6/redis=wontfix,openstack-7/redis=wontfix,openstack-8/redis=wontfix,openstack-9/redis=wontfix,openstack-10/redis=affected,openstack-7-optools/redis=wontfix,openstack-8-optools/redis=wontfix,openstack-9-optools/redis=wontfix,rhscl-3/rh-redis32-redis=affected |
| Honza Horak | 2017-11-02 08:09:30 UTC | Flags | needinfo?(hhorak) | |
| Stefan Cornelius | 2017-11-16 11:40:53 UTC | Whiteboard | impact=low,public=20161101,reported=20161101,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,cwe=CWE-732,fedora-all/redis=affected,epel-all/redis=affected,openstack-6/redis=wontfix,openstack-7/redis=wontfix,openstack-8/redis=wontfix,openstack-9/redis=wontfix,openstack-10/redis=affected,openstack-7-optools/redis=wontfix,openstack-8-optools/redis=wontfix,openstack-9-optools/redis=wontfix,rhscl-3/rh-redis32-redis=affected | impact=low,public=20161101,reported=20161101,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,cwe=CWE-732,fedora-all/redis=affected,epel-all/redis=affected,openstack-6/redis=wontfix,openstack-7/redis=wontfix,openstack-8/redis=wontfix,openstack-9/redis=wontfix,openstack-10/redis=affected,openstack-7-optools/redis=wontfix,openstack-8-optools/redis=wontfix,openstack-9-optools/redis=wontfix,rhscl-3/rh-redis32-redis=notaffected |
| Stefan Cornelius | 2017-11-16 11:43:41 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2017-11-16 06:43:41 UTC | |||
| Product Security DevOps Team | 2019-09-29 13:59:56 UTC | Whiteboard | impact=low,public=20161101,reported=20161101,source=redhat,cvss2=2.1/AV:L/AC:L/Au:N/C:P/I:N/A:N,cvss3=4.0/CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N,cwe=CWE-732,fedora-all/redis=affected,epel-all/redis=affected,openstack-6/redis=wontfix,openstack-7/redis=wontfix,openstack-8/redis=wontfix,openstack-9/redis=wontfix,openstack-10/redis=affected,openstack-7-optools/redis=wontfix,openstack-8-optools/redis=wontfix,openstack-9-optools/redis=wontfix,rhscl-3/rh-redis32-redis=notaffected |
Back to bug 1390588