An issue in Atomix v3.1.5 allows attackers to access sensitive information when a malicious Atomix node queries distributed variable primitives which contain the entire primitive lists that ONOS nodes use to share important states. https://docs.google.com/presentation/d/1pRRLfdSUqUZ688CZ9e9AyceuXPGp9oyGj7j4bdSsBcw/edit?usp=sharing
Created atomix tracking bugs for this issue: Affects: fedora-all [bug 2056577]
(In reply to Avinash Hanwate from comment #1) > Created atomix tracking bugs for this issue: > > Affects: fedora-all [bug 2056533] As I already mentioned in bug 2056593, the Fedora atomix package has nothing to do what soever with the Atomix software these CVEs are for: """ From: https://src.fedoraproject.org/rpms/atomix "Atomix is yet another little mind game. You have to build molecules out of single atoms laying around. Of course there is a time limit and the handling is not as easy as you might expect ;-). This game is inspired by the original Amiga game Atomix and uses the GNOME libraries." IOW this is not the Atomix you are looking for, closing. """ I had 24! bugzilla emails about this because no-one checked this was actually the right atomix. Please stop creating Fedora bugs for this and stop adding the Fedora atomix maintainers to the Cc of the overall tracking bugs for these!