Bug 1328281 - need updated rubygem-rake [NEEDINFO]
Summary: need updated rubygem-rake
Keywords:
Status: CLOSED WONTFIX
Alias: None
Product: Red Hat Satellite
Classification: Red Hat
Component: Packaging
Version: 6.1.8
Hardware: Unspecified
OS: Unspecified
unspecified
high vote
Target Milestone: Unspecified
Assignee: Mike McCune
QA Contact: Katello QA List
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2016-04-18 22:41 UTC by Mike McCune
Modified: 2019-11-14 07:49 UTC (History)
5 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2017-05-19 12:45:28 UTC
Target Upstream Version:
nitthoma: needinfo? (mmccune)


Attachments (Terms of Use)

Description Mike McCune 2016-04-18 22:41:19 UTC
Red Hat shipped an update to rubygem-rake in this CVE/Errata:

 https://access.redhat.com/errata/RHSA-2014:1912

we are currently shipping rubygem-rake-0.9.2.2-41.el7sat which is outdated and vulnerable to the above CVE.

We need to get an updated version of this rubygem into Satellite 6.1

Comment 3 Bryan Kearney 2017-05-19 12:45:28 UTC
We will not be addressing this bug in the 6.1 code base. If you have concerns with this, please feel free to reach out to me with any concerns or issues you may have. Thank you.


Note You need to log in before you can comment on or make changes to this bug.