Back to bug 1400344
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Bharti Kundal | 2016-11-30 23:22:26 UTC | Blocks | 1399004 | |
| Adam Mariš | 2016-12-01 08:53:04 UTC | Summary | jboss: jbossas: unsafe chown of server.log in jboss init script allows privilege escalation | CVE-2016-8656 jboss: jbossas: unsafe chown of server.log in jboss init script allows privilege escalation |
| Alias | CVE-2016-8656 | |||
| Bharti Kundal | 2016-12-08 19:17:39 UTC | Depends On | 1402973 | |
| Bharti Kundal | 2016-12-08 19:17:44 UTC | Depends On | 1402974 | |
| Bharti Kundal | 2016-12-08 19:17:57 UTC | Depends On | 1402975 | |
| Radim Hatlapatka | 2017-01-02 09:25:39 UTC | CC | rhatlapa | |
| Bharti Kundal | 2017-01-30 15:33:04 UTC | Doc Text | It was discovered that the jbossas init script performed unsafe file handling,which could result in local privilege escalation. | |
| Eric Christensen | 2017-01-30 15:37:04 UTC | Doc Text | It was discovered that the jbossas init script performed unsafe file handling,which could result in local privilege escalation. | It was discovered that the jbossas init script performed unsafe file handling which could result in local privilege escalation. |
| Bharti Kundal | 2017-01-30 17:58:54 UTC | Doc Text | It was discovered that the jbossas init script performed unsafe file handling which could result in local privilege escalation. | It was discovered that the jboss init script performed unsafe file handling,which could result in local privilege escalation. |
| Eric Christensen | 2017-01-30 18:56:17 UTC | Doc Text | It was discovered that the jboss init script performed unsafe file handling,which could result in local privilege escalation. | It was discovered that the jboss init script performed unsafe file handling which could result in local privilege escalation. |
| Bharti Kundal | 2017-02-17 17:19:57 UTC | Blocks | 1424497 | |
| Bharti Kundal | 2017-12-04 09:07:07 UTC | Blocks | 1520314 | |
| Permaine Cheung | 2017-12-11 14:43:17 UTC | Status | NEW | ON_QA |
| CC | pcheung | |||
| PnT Account Manager | 2018-03-05 15:36:34 UTC | CC | rhatlapa | |
| errata-xmlrpc | 2018-05-17 18:27:00 UTC | Link ID | Red Hat Product Errata RHSA-2018:1609 | |
| Laura Pardo | 2018-05-22 15:13:08 UTC | Fixed In Version | jbossas 5.2.0-23, jbossas 6.4.13, jbossas 7.0.5 | |
| Laura Pardo | 2018-05-22 15:17:03 UTC | Whiteboard | impact=important,public=20160915,reported=20160915,source=bugtraq,cvss2=6.9/AV:L/AC:M/Au:N/C:C/I:C/A:C,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,eap-5/jbossas=affected,eap-6/jbossas=affected,eap-7/jbossas=affected | impact=important,public=20160915,reported=20160915,source=bugtraq,cvss2=6.9/AV:L/AC:M/Au:N/C:C/I:C/A:C,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-284,eap-5/jbossas=affected,eap-6/jbossas=affected,eap-7/jbossas=affected |
| Kunjan Rathod | 2019-06-18 06:14:41 UTC | CC | asoldano, brian.stansberry, chazlett, iweiss, jkurik, jperkins, krathod, kwills, msochure, msvehla, nwallace, pmackay, psotirop, rguimara, smaestri, tom.jenkinson | |
| Whiteboard | impact=important,public=20160915,reported=20160915,source=bugtraq,cvss2=6.9/AV:L/AC:M/Au:N/C:C/I:C/A:C,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-284,eap-5/jbossas=affected,eap-6/jbossas=affected,eap-7/jbossas=affected | impact=important,public=20160915,reported=20160915,source=bugtraq,cvss2=6.9/AV:L/AC:M/Au:N/C:C/I:C/A:C,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-284,eap-5/jboss=affected,eap-6/jbossas=affected,eap-7/jbossas=affected | ||
| Kunjan Rathod | 2019-06-18 06:19:51 UTC | CC | fnasser, jason.greene, jboss-set | |
| Whiteboard | impact=important,public=20160915,reported=20160915,source=bugtraq,cvss2=6.9/AV:L/AC:M/Au:N/C:C/I:C/A:C,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-284,eap-5/jboss=affected,eap-6/jbossas=affected,eap-7/jbossas=affected | impact=important,public=20160915,reported=20160915,source=bugtraq,cvss2=6.9/AV:L/AC:M/Au:N/C:C/I:C/A:C,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-284,eap-5/jboss=affected,eap-6/jboss=affected,eap-7/jboss=affected | ||
| Product Security DevOps Team | 2019-07-12 13:04:26 UTC | Status | ON_QA | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2019-07-12 13:04:26 UTC | |||
| Product Security DevOps Team | 2019-09-29 14:01:53 UTC | Whiteboard | impact=important,public=20160915,reported=20160915,source=bugtraq,cvss2=6.9/AV:L/AC:M/Au:N/C:C/I:C/A:C,cvss3=7.0/CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H,cwe=CWE-284,eap-5/jboss=affected,eap-6/jboss=affected,eap-7/jboss=affected |
Back to bug 1400344