Back to bug 2131990
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Vipul Nair | 2022-10-06 08:17:16 UTC | CC | bbuckingham, bcourt, btotty, ehelms, jsherril, lzap, mhulan, mmccune, myarboro, nmoumoul, orabin, pcreech, rchan | |
| Vipul Nair | 2022-10-06 08:19:31 UTC | Depends On | 2132584, 2132585 | |
| Borja Tarraso | 2022-10-14 07:03:55 UTC | CC | bcoca, cwelton, davidn, epacific, jcammara, jhardy, jneedle, jobarker, mabashia, osapryki, simaishi, smcdonal, yguenane, zsadeh | |
| Borja Tarraso | 2022-10-14 07:04:16 UTC | Depends On | 2134729 | |
| Vipul Nair | 2022-10-21 16:59:26 UTC | Alias | CVE-2022-3644 | |
| Summary | Pulp:Tokens stored in plaintext | CVE-2022-3644 Pulp:Tokens stored in plaintext | ||
| CC | adudiak, stcannon, tfister | |||
| Vipul Nair | 2022-11-07 08:19:08 UTC | Doc Text | A flaw exists in collection remote for pulp_ansible where tokens are stored in plaintext instead of using pulp's encrypted field. An attacker with sufficient privileges could read the stored tokens resulting in the loss of confidentiality | |
| RaTasha Tillery-Smith | 2022-11-07 14:35:10 UTC | Doc Text | A flaw exists in collection remote for pulp_ansible where tokens are stored in plaintext instead of using pulp's encrypted field. An attacker with sufficient privileges could read the stored tokens resulting in the loss of confidentiality | A flaw exists in the collection remote for pulp_ansible, where tokens are stored in plaintext instead of using pulp's encrypted field. This flaw allows an attacker with sufficient privileges to read the stored tokens, resulting in the loss of confidentiality. |
| Red Hat Bugzilla | 2023-01-20 05:18:41 UTC | CC | cwelton | |
| Red Hat Bugzilla | 2023-03-02 08:27:39 UTC | CC | myarboro | |
| Red Hat Bugzilla | 2023-05-15 20:18:54 UTC | CC | btotty | |
| Red Hat Bugzilla | 2023-07-07 08:29:50 UTC | Assignee | security-response-team | nobody |
Back to bug 2131990