Summary: |
CVE-2018-1288 kafka: Users can perform Broker actions via crafted fetch requests, interfering with data replication and causing data lass |
Product: |
[Other] Security Response
|
Reporter: |
Sam Fowler <sfowler> |
Component: |
vulnerability | Assignee: |
Red Hat Product Security <security-response-team> |
Status: |
CLOSED
ERRATA
|
QA Contact: |
|
Severity: |
medium
|
Docs Contact: |
|
Priority: |
medium
|
|
|
Version: |
unspecified | CC: |
avibelli, bgeorges, cbyrne, cmacedo, dffrench, drusso, jbalunas, jmadigan, jpallich, jshepherd, krathod, lgriffin, lthon, mszynkie, ngough, pgallagh, pwright, rruss, trepel, trogers
|
Target Milestone: |
--- | Keywords: |
Security |
Target Release: |
--- | |
|
Hardware: |
All | |
|
OS: |
Linux | |
|
Whiteboard: |
|
Fixed In Version:
|
kafka 0.10.2.2, kafka 0.11.0.3, kafka 1.0.1, kafka 1.1.0
|
Doc Type:
|
If docs needed, set a value
|
Doc Text:
|
|
Story Points:
|
---
|
Clone Of:
|
|
Environment:
|
|
Last Closed:
|
2019-06-10 10:35:01 UTC
|
Type:
|
---
|
Regression:
|
---
|
Mount Type:
|
---
|
Documentation:
|
---
|
CRM:
|
|
Verified Versions:
|
|
Category:
|
---
|
oVirt Team:
|
---
|
RHEL 7.3 requirements from Atomic Host:
|
|
Cloudforms Team:
|
---
|
Target Upstream Version:
|
|
Embargoed:
|
|
| |
Bug Depends On: |
|
|
|
Bug Blocks: |
1611060
|
|
|