Bug 736321

Summary: openvas-scanner: Insecure temporary file use by generation of an OVAL system characteristics document, when ovaldi support enabled [epel-6]
Product: [Fedora] Fedora EPEL Reporter: Jan Lieskovsky <jlieskov>
Component: openvas-scannerAssignee: Stjepan Gros <stjepan.gros>
Status: CLOSED ERRATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: low Docs Contact:
Priority: low    
Version: el6CC: huzaifas, mnewsome, rebus, stjepan.gros, xavier
Target Milestone: ---Keywords: Security, SecurityTracking
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard: fst_owner=siddhesh
Fixed In Version: openvas-scanner-5.1.1-1.fc26 Doc Type: Release Note
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-07-16 20:19:54 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 736317    

Description Jan Lieskovsky 2011-09-07 12:17:25 UTC 
epel-6 tracking bug for openvas-scanner: see blocks bug list for full details of the security issue(s).

This bug is never intended to be made public, please put any public notes
in the 'blocks' bugs.


[bug automatically created by: add-tracking-bugs]
Comment 1 Siddhesh Poyarekar 2014-11-01 06:29:22 UTC 
Is there a plan to fix this flaw in epel6?
Comment 2 Fedora Update System 2016-09-06 08:56:39 UTC 
openvas-gsa-6.0.11-3.fc23 openvas-manager-6.0.9-1.fc23 openvas-scanner-5.0.6-1.fc23 openvas-libraries-8.0.8-2.fc23 has been submitted as an update to Fedora 23. https://bodhi.fedoraproject.org/updates/FEDORA-2016-63633ea21c
Comment 3 Fedora Update System 2016-09-06 08:57:06 UTC 
openvas-gsa-6.0.11-3.fc24 openvas-manager-6.0.9-1.fc24 openvas-scanner-5.0.6-1.fc24 openvas-libraries-8.0.8-2.fc24 has been submitted as an update to Fedora 24. https://bodhi.fedoraproject.org/updates/FEDORA-2016-b9ab1def88
Comment 4 Fedora Update System 2016-09-06 08:57:26 UTC 
openvas-gsa-6.0.11-3.fc25 openvas-manager-6.0.9-1.fc25 openvas-scanner-5.0.6-1.fc25 openvas-libraries-8.0.8-2.fc25 has been submitted as an update to Fedora 25. https://bodhi.fedoraproject.org/updates/FEDORA-2016-73e509d4e4
Comment 5 Fedora Update System 2017-07-06 01:09:06 UTC 
openvas-cli-1.4.5-3.fc26 openvas-gsa-7.0.2-2.fc26 openvas-manager-7.0.2-1.fc26 openvas-scanner-5.1.1-1.fc26 openvas-libraries-9.0.1-1.fc26 has been submitted as an update to Fedora 26. https://bodhi.fedoraproject.org/updates/FEDORA-2017-3fb16e3a65
Comment 6 Fedora Update System 2017-07-06 18:23:14 UTC 
openvas-cli-1.4.5-3.fc26, openvas-gsa-7.0.2-2.fc26, openvas-libraries-9.0.1-1.fc26, openvas-manager-7.0.2-1.fc26, openvas-scanner-5.1.1-1.fc26 has been pushed to the Fedora 26 testing repository. If problems still persist, please make note of it in this bug report.
See https://fedoraproject.org/wiki/QA:Updates_Testing for
instructions on how to install test updates.
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2017-3fb16e3a65
Comment 7 Fedora Update System 2017-07-16 20:19:54 UTC 
openvas-cli-1.4.5-3.fc26, openvas-gsa-7.0.2-2.fc26, openvas-libraries-9.0.1-1.fc26, openvas-manager-7.0.2-1.fc26, openvas-scanner-5.1.1-1.fc26 has been pushed to the Fedora 26 stable repository. If problems still persist, please make note of it in this bug report.
Comment 8 Red Hat Bugzilla 2023-09-14 01:25:19 UTC 
The needinfo request[s] on this closed bug have been removed as they have been unresolved for 1000 days