This site requires JavaScript to be enabled to function correctly, please enable it.
Summary:
CVE-2013-4201 Katello: CLI - user without access can call "system remove_deletion" command
Product:
[Other] Security Response
Reporter:
Garth Mollett <gmollett>
Component:
vulnerability Assignee:
Red Hat Product Security <security-response-team>
Status:
CLOSED
CURRENTRELEASE
QA Contact:
Severity:
medium
Docs Contact:
Priority:
medium
Version:
unspecified CC:
athomas, bdunne, bkearney, cpelland, jfrey, jrafanie, jrusnack, katello-bugs, kseifried, mmccune, msuchy, obarenbo, sclewis, xlecauch
Target Milestone:
--- Keywords:
Security
Target Release:
---
Hardware:
All
OS:
Linux
Whiteboard:
Fixed In Version:
Doc Type:
Bug Fix
Doc Text:
Story Points:
---
Clone Of:
Environment:
Last Closed:
2015-01-17 05:34:39 UTC
Type:
---
Regression:
---
Mount Type:
---
Documentation:
---
CRM:
Verified Versions:
Category:
---
oVirt Team:
---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:
---
Target Upstream Version:
Embargoed:
Bug Depends On:
896074 , 991633 , 991634
Bug Blocks:
991635 , 1000138