Bug 529483 – CVE-2009-4139 RHN Satellite / Spacewalk: CSRF in all web portal forms

Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.

Bug 529483 - (CVE-2009-4139) CVE-2009-4139 RHN Satellite / Spacewalk: CSRF in all web portal forms

Summary:	CVE-2009-4139 RHN Satellite / Spacewalk: CSRF in all web portal forms

Status:	CLOSED ERRATA

Aliases:	CVE-2009-4139

Product:	Security Response
Classification:	Other
Component:	vulnerability (Show other bugs)
Sub Component:
Version:	unspecified
Hardware:	All Linux

Priority	medium Severity medium
Target Milestone:	---
Target Release:	---
Assigned To:	Red Hat Product Security
QA Contact:	Jiri Kastner
Docs Contact:

URL:
Whiteboard:	public=20110616,reported=20091016,sou...
Keywords:	Security

Duplicates:	672170 (view as bug list)
Depends On:	693796
Blocks:	622406
	Show dependency tree / graph

Reported:	2009-10-17 09:25 EDT by Jan Lieskovsky
Modified:	2016-03-04 07:50 EST (History)
CC List:	19 users (show)

See Also:	https://bugzilla.redhat.com/show_bug.cgi?id=719504
Fixed In Version:	spacewalk-java-1.2.39-85.el*sat
Doc Type:	Bug Fix
Doc Text:
Story Points:	---
Clone Of:
Environment:
Last Closed:	2013-08-02 12:23:58 EDT
Type:	---
Regression:	---
Mount Type:	---
Documentation:	---
CRM:
Verified Versions:
Category:	---
oVirt Team:	---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team:	---

Attachments	(Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

External Trackers
Tracker	ID	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHSA-2011:0879	normal	SHIPPED_LIVE	Moderate: Red Hat Network Satellite server spacewalk-java security update	2011-06-16 15:01:11 EDT

Groups: None (edit)

Description Jan Lieskovsky 2009-10-17 09:25:40 EDT

It was found that Red Hat Network (RHN) Satellite and Spacewalk services did
not protect against Cross-Site Request Forgery (CSRF) attacks. If an
authenticated RHN Satellite or Spacewalk service user visited a specially-
crafted web page, it could lead to unauthorized command execution with the
privileges of that user, for example, creating a new user account, granting
administrator privileges to user accounts, disabling the account of the current
user, and so on. 

Acknowledgements:

Red Hat would like to thank Christian Johansson of Bitsec AB and Thomas Biege of the SUSE Security Team for independently reporting this issue.

Comment 47 Jan Lieskovsky 2011-06-16 08:52:08 EDT

This issue affects the versions of the spacewalk-java package, as shipped
with Red Hat Network Satellite Server version 5.3.0, and 5.4.0.

Comment 48 Jan Lieskovsky 2011-06-16 08:54:49 EDT

Statement:

Vulnerable. This issue has been addressed in Red Hat Network Satellite Server v 5.4.1 via RHSA-2011:0879 https://rhn.redhat.com/errata/RHSA-2011-0879.html. This issue is not planned to be fixed in Red Hat Network Satellite Server version 5.3.0.

Comment 50 errata-xmlrpc 2011-06-16 15:01:15 EDT

This issue has been addressed in following products:

  Red Hat Network Satellite Server v 5.4

Via RHSA-2011:0879 https://rhn.redhat.com/errata/RHSA-2011-0879.html

Comment 51 Jan Lieskovsky 2013-08-02 12:21:26 EDT

Spacewalk commit:
  https://git.fedorahosted.org/cgit/spacewalk.git/commit/?id=86afbf7c8bec544f44c9e9a65fad453422389cfe

Note You need to log in before you can comment on or make changes to this bug.