RSS   Vulnerabilities for 'Katello-configure'   RSS

2013-03-01
 
CVE-2012-6116

 

 
modules/certs/manifests/config.pp in katello-configure before 1.3.3.pulpv2 in Katello uses weak permissions (666) for the Candlepin bootstrap RPM, which allows local users to modify the Candlepin CA certificate by writing to this file.

 

 >>> Vendor: Katello 3 Products
Katello
Katello-configure
Katello installer


Copyright 2019, cxsecurity.com

 

Back to Top