Back to bug 742837
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Ondrej Vasik | 2011-11-03 16:03:30 UTC | CC | ovasik | |
| Justin I. Nevill | 2011-11-11 12:06:53 UTC | Priority | medium | high |
| Group | redhat | |||
| CC | jnevill | |||
| Flags | needinfo?(jsafrane) | |||
| Severity | medium | high | ||
| Jan Lieskovsky | 2011-11-11 14:02:51 UTC | Keywords | Security | |
| Group | security | |||
| CC | jlieskov, security-response-team | |||
| Jan Lieskovsky | 2011-11-11 14:04:40 UTC | Summary | /var/run/ipmievd.pid has world writable permission | EMBARGOED OpenIPMI, ipmitool: IPMI event daemon creates PID file with world writable permissions |
| Flags | needinfo?(jsafrane) | |||
| Jan Lieskovsky | 2011-11-11 14:05:34 UTC | Group | devel | |
| Version | 6.1 | unspecified | ||
| Component | ipmitool | vulnerability | ||
| Assignee | jsafrane | security-response-team | ||
| QA Contact | qe-baseos-daemons | |||
| Target Milestone | rc | --- | ||
| Product | Red Hat Enterprise Linux 6 | Security Response | ||
| Jan Lieskovsky | 2011-11-11 14:14:04 UTC | Priority | high | medium |
| Group | qe_staff | |||
| Whiteboard | impact=moderate,public=no,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C | |||
| Severity | high | medium | ||
| Jan Safranek | 2011-11-11 14:27:07 UTC | CC | jsafrane | |
| Jan Lieskovsky | 2011-11-11 15:51:12 UTC | Whiteboard | impact=moderate,public=no,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C | impact=low,public=no,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected/impact=moderate,rhel-5/OpenIPMI=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C |
| Jan Lieskovsky | 2011-11-11 16:09:16 UTC | Blocks | 753218 | |
| Jan Lieskovsky | 2011-11-11 16:13:49 UTC | Whiteboard | impact=low,public=no,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected/impact=moderate,rhel-5/OpenIPMI=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C | impact=moderate,public=no,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected/impact=moderate,rhel-5/OpenIPMI=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C |
| Huzaifa S. Sidhpurwala | 2011-11-22 06:44:57 UTC | Whiteboard | impact=moderate,public=no,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected/impact=moderate,rhel-5/OpenIPMI=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C | impact=moderate,public=no,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C |
| Huzaifa S. Sidhpurwala | 2011-11-22 06:56:45 UTC | Summary | EMBARGOED OpenIPMI, ipmitool: IPMI event daemon creates PID file with world writable permissions | EMBARGOED CVE-2011-4339 OpenIPMI, ipmitool: IPMI event daemon creates PID file with world writable permissions |
| Alias | CVE-2011-4339 | |||
| Huzaifa S. Sidhpurwala | 2011-11-22 07:18:13 UTC | Summary | EMBARGOED CVE-2011-4339 OpenIPMI, ipmitool: IPMI event daemon creates PID file with world writable permissions | EMBARGOED CVE-2011-4339 OpenIPMI : IPMI event daemon creates PID file with world writable permissions |
| Huzaifa S. Sidhpurwala | 2011-11-23 09:39:50 UTC | Flags | needinfo?(mmatsuya) | |
| Masahiro Matsuya | 2011-11-24 03:47:12 UTC | Flags | needinfo?(mmatsuya) | |
| Huzaifa S. Sidhpurwala | 2011-11-24 09:37:35 UTC | Depends On | 756684 | |
| Huzaifa S. Sidhpurwala | 2011-11-24 09:37:48 UTC | Depends On | 756685 | |
| Tomas Hoger | 2011-11-24 09:49:57 UTC | Summary | EMBARGOED CVE-2011-4339 OpenIPMI : IPMI event daemon creates PID file with world writable permissions | EMBARGOED CVE-2011-4339 OpenIPMI: IPMI event daemon creates PID file with world writeable permissions |
| Huzaifa S. Sidhpurwala | 2011-12-08 09:00:08 UTC | Flags | needinfo?(mmatsuya) | |
| Masahiro Matsuya | 2011-12-08 09:07:08 UTC | Flags | needinfo?(mmatsuya) | |
| Huzaifa S. Sidhpurwala | 2011-12-12 04:37:13 UTC | Flags | needinfo?(mmatsuya) | |
| Vincent Danen | 2011-12-12 20:29:36 UTC | CC | vdanen | |
| Masahiro Matsuya | 2011-12-13 01:49:33 UTC | Flags | needinfo?(mmatsuya) | |
| Huzaifa S. Sidhpurwala | 2011-12-13 03:42:59 UTC | Whiteboard | impact=moderate,public=no,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C | impact=moderate,public=no,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=defer/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C |
| Huzaifa S. Sidhpurwala | 2011-12-13 03:51:23 UTC | Group | redhat, security, qe_staff | |
| Summary | EMBARGOED CVE-2011-4339 OpenIPMI: IPMI event daemon creates PID file with world writeable permissions | CVE-2011-4339 OpenIPMI: IPMI event daemon creates PID file with world writeable permissions | ||
| Huzaifa S. Sidhpurwala | 2011-12-13 03:51:36 UTC | Whiteboard | impact=moderate,public=no,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=defer/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C | impact=moderate,public=20111213,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=defer/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C |
| Huzaifa S. Sidhpurwala | 2011-12-13 03:53:21 UTC | Attachment #525972 Attachment is private | 1 | 0 |
| Huzaifa S. Sidhpurwala | 2011-12-13 03:55:36 UTC | Depends On | 767049 | |
| Vincent Danen | 2011-12-13 22:38:24 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2011-12-13 17:38:24 UTC | |||
| Vincent Danen | 2011-12-13 22:38:39 UTC | Status | CLOSED | ASSIGNED |
| Resolution | ERRATA | --- | ||
| Keywords | Reopened | |||
| Vincent Danen | 2011-12-13 22:38:49 UTC | Status | ASSIGNED | NEW |
| Huzaifa S. Sidhpurwala | 2012-06-21 07:20:36 UTC | Whiteboard | impact=moderate,public=20111213,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=defer/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C | impact=moderate,public=20111213,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C |
| Huzaifa S. Sidhpurwala | 2012-06-21 07:21:27 UTC | Depends On | 834189 | |
| Huzaifa S. Sidhpurwala | 2012-06-21 07:21:41 UTC | Depends On | 834190 | |
| Huzaifa S. Sidhpurwala | 2012-06-21 07:23:34 UTC | Depends On | 834189 | |
| Huzaifa S. Sidhpurwala | 2012-06-21 07:25:53 UTC | Blocks | 816611 | |
| Huzaifa S. Sidhpurwala | 2012-06-21 07:26:33 UTC | Whiteboard | impact=moderate,public=20111213,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C | impact=moderate,public=20111213,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=defer/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C |
| Soham Chakraborty | 2012-06-21 09:02:43 UTC | CC | SCHAKRAB | |
| Karel Volný | 2012-10-12 15:17:55 UTC | CC | kvolny | |
| Huzaifa S. Sidhpurwala | 2012-11-19 16:20:25 UTC | Whiteboard | impact=moderate,public=20111213,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=defer/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C | impact=moderate,public=20111213,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C |
| Huzaifa S. Sidhpurwala | 2012-11-26 05:20:48 UTC | Priority | medium | low |
| Whiteboard | impact=moderate,public=20111213,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C | impact=low,public=20111213,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C | ||
| Severity | medium | low | ||
| Tomas Hoger | 2012-11-26 09:22:51 UTC | Whiteboard | impact=low,public=20111213,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected/impact=moderate fedora-all/ipmitool=affected/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C | impact=moderate,public=20111213,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=affected/impact=low/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected fedora-all/ipmitool=affected |
| Tomas Hoger | 2012-11-26 09:23:14 UTC | CC | aledvink | |
| Tomas Hoger | 2012-11-26 09:24:05 UTC | Priority | low | medium |
| Severity | low | medium | ||
| Huzaifa S. Sidhpurwala | 2013-01-08 09:10:07 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2011-12-13 17:38:24 UTC | 2013-01-08 04:10:07 UTC | ||
| Adam Mariš | 2015-07-31 14:41:06 UTC | CC | amaris | |
| Whiteboard | impact=moderate,public=20111213,reported=20111003,source=bugzilla,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=affected/impact=low/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected,fedora-all/ipmitool=affected | impact=moderate,public=20111213,reported=20111003,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=affected/impact=low/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected,fedora-all/ipmitool=affected | ||
| Adam Mariš | 2016-11-08 16:29:44 UTC | CC | amaris | |
| Product Security DevOps Team | 2019-09-29 12:47:16 UTC | Whiteboard | impact=moderate,public=20111213,reported=20111003,source=redhat,cvss2=4.7/AV:L/AC:M/Au:N/C:N/I:N/A:C,rhel-4/OpenIPMI=notaffected,rhel-5/OpenIPMI=affected/impact=low/cvss2=4.0/AV:L/AC:H/Au:N/C:N/I:N/A:C,rhel-6/ipmitool=affected,fedora-all/ipmitool=affected |
Back to bug 742837