Detections
Analytics
RHEL 6 : Red Hat Satellite 6.1.1 on RHEL 6 (Important) (RHSA-2015:1592)
high Nessus Plugin ID 85716
Language:
Synopsis
The remote Red Hat host is missing one or more security updates.Description
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:1592 advisory.Red Hat Product Security has rated this update as having an important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.
Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.
This update provides Satellite 6.1 packages for Red Hat Enterprise Linux 6.
For the full list of new features provided by Satellite 6.1 see the Release notes linked to in References section. (BZ#1201357)
It was discovered that, in Foreman, the edit_users permission (for example, granted to the Manager role) allowed the user to edit admin user passwords.
An attacker with the edit_users permission could use this flaw to access an admin user account, leading to an escalation of privileges.
(CVE-2015-3235)
It was found that Foreman did not set the HttpOnly flag on session cookies.
This could allow a malicious script to access the session cookie.
(CVE-2015-3155)
It was found that when making an SSL connection to an LDAP authentication source in Foreman, the remote server certificate was accepted without any verification against known certificate authorities, potentially making TLS connections vulnerable to man-in-the-middle attacks. (CVE-2015-1816)
A flaw was found in the way Foreman authorized user actions on resources via the API when an organization was not explicitly set. A remote attacker could use this flaw to obtain additional information about resources they were not authorized to access. (CVE-2015-1844)
A cross-site scripting (XSS) flaw was found in Foreman's template preview screen. A remote attacker could use this flaw to perform cross-site scripting attacks by tricking a user into viewing a malicious template.
Note that templates are commonly shared among users. (CVE-2014-3653)
It was found that python-oauth2 did not properly verify the nonce of a signed URL. An attacker able to capture network traffic of a website using OAuth2 authentication could use this flaw to conduct replay attacks against that website. (CVE-2013-4346)
It was found that python-oauth2 did not properly generate random values for use in nonces. An attacker able to capture network traffic of a website using OAuth2 authentication could use this flaw to conduct replay attacks against that website. (CVE-2013-4347)
Red Hat would like to thank Rufus Jrnefelt of Coresec for reporting the Foreman HttpOnly issue.
All users who require Satellite 6.1 are advised to install these new packages.
Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Update the affected packages.See Also
https://access.redhat.com/errata/RHSA-2015:1592
https://bugzilla.redhat.com/show_bug.cgi?id=1007746
https://bugzilla.redhat.com/show_bug.cgi?id=1007758
https://bugzilla.redhat.com/show_bug.cgi?id=1145398
https://bugzilla.redhat.com/show_bug.cgi?id=1216035
https://bugzilla.redhat.com/show_bug.cgi?id=1232366
https://access.redhat.com/security/updates/classification/#important
http://www.nessus.org/u?72d2f26c
https://bugzilla.redhat.com/show_bug.cgi?id=1207589
https://bugzilla.redhat.com/show_bug.cgi?id=1208602
http://www.nessus.org/u?59b0d267
https://bugzilla.redhat.com/show_bug.cgi?id=1009578
https://bugzilla.redhat.com/show_bug.cgi?id=1010575
https://bugzilla.redhat.com/show_bug.cgi?id=1016874
https://bugzilla.redhat.com/show_bug.cgi?id=1019227
https://bugzilla.redhat.com/show_bug.cgi?id=1023062
https://bugzilla.redhat.com/show_bug.cgi?id=1024539
https://bugzilla.redhat.com/show_bug.cgi?id=1031001
https://bugzilla.redhat.com/show_bug.cgi?id=1037729
https://bugzilla.redhat.com/show_bug.cgi?id=1052257
https://bugzilla.redhat.com/show_bug.cgi?id=1070730
https://bugzilla.redhat.com/show_bug.cgi?id=1076568
https://bugzilla.redhat.com/show_bug.cgi?id=1079975
https://bugzilla.redhat.com/show_bug.cgi?id=1083184
https://bugzilla.redhat.com/show_bug.cgi?id=1085406
https://bugzilla.redhat.com/show_bug.cgi?id=1085417
https://bugzilla.redhat.com/show_bug.cgi?id=1088751
https://bugzilla.redhat.com/show_bug.cgi?id=1091494
https://bugzilla.redhat.com/show_bug.cgi?id=1093180
https://bugzilla.redhat.com/show_bug.cgi?id=1093347
https://bugzilla.redhat.com/show_bug.cgi?id=1093483
https://bugzilla.redhat.com/show_bug.cgi?id=1093766
https://bugzilla.redhat.com/show_bug.cgi?id=1096407
https://bugzilla.redhat.com/show_bug.cgi?id=1096952
https://bugzilla.redhat.com/show_bug.cgi?id=1098183
https://bugzilla.redhat.com/show_bug.cgi?id=1098425
https://bugzilla.redhat.com/show_bug.cgi?id=1098704
https://bugzilla.redhat.com/show_bug.cgi?id=1098709
https://bugzilla.redhat.com/show_bug.cgi?id=1100344
https://bugzilla.redhat.com/show_bug.cgi?id=1101093
https://bugzilla.redhat.com/show_bug.cgi?id=1102284
https://bugzilla.redhat.com/show_bug.cgi?id=1102296
https://bugzilla.redhat.com/show_bug.cgi?id=1102732
https://bugzilla.redhat.com/show_bug.cgi?id=1103862
https://bugzilla.redhat.com/show_bug.cgi?id=1103865
https://bugzilla.redhat.com/show_bug.cgi?id=1103871
https://bugzilla.redhat.com/show_bug.cgi?id=1103944
https://bugzilla.redhat.com/show_bug.cgi?id=1104175
https://bugzilla.redhat.com/show_bug.cgi?id=1104638
https://bugzilla.redhat.com/show_bug.cgi?id=1104781
https://bugzilla.redhat.com/show_bug.cgi?id=1105773
https://bugzilla.redhat.com/show_bug.cgi?id=1108172
https://bugzilla.redhat.com/show_bug.cgi?id=1108317
https://bugzilla.redhat.com/show_bug.cgi?id=1110360
https://bugzilla.redhat.com/show_bug.cgi?id=1110431
https://bugzilla.redhat.com/show_bug.cgi?id=1110475
https://bugzilla.redhat.com/show_bug.cgi?id=1111240
https://bugzilla.redhat.com/show_bug.cgi?id=1111254
https://bugzilla.redhat.com/show_bug.cgi?id=1111310
https://bugzilla.redhat.com/show_bug.cgi?id=1111711
https://bugzilla.redhat.com/show_bug.cgi?id=1112112
https://bugzilla.redhat.com/show_bug.cgi?id=1112182
https://bugzilla.redhat.com/show_bug.cgi?id=1112234
https://bugzilla.redhat.com/show_bug.cgi?id=1112247
https://bugzilla.redhat.com/show_bug.cgi?id=1112563
https://bugzilla.redhat.com/show_bug.cgi?id=1112607
https://bugzilla.redhat.com/show_bug.cgi?id=1112657
https://bugzilla.redhat.com/show_bug.cgi?id=1112747
https://bugzilla.redhat.com/show_bug.cgi?id=1112782
https://bugzilla.redhat.com/show_bug.cgi?id=1114136
https://bugzilla.redhat.com/show_bug.cgi?id=1114860
https://bugzilla.redhat.com/show_bug.cgi?id=1115602
https://bugzilla.redhat.com/show_bug.cgi?id=1117342
https://bugzilla.redhat.com/show_bug.cgi?id=1117376
https://bugzilla.redhat.com/show_bug.cgi?id=1117636
https://bugzilla.redhat.com/show_bug.cgi?id=1117952
https://bugzilla.redhat.com/show_bug.cgi?id=1117964
https://bugzilla.redhat.com/show_bug.cgi?id=1118102
https://bugzilla.redhat.com/show_bug.cgi?id=1120280
https://bugzilla.redhat.com/show_bug.cgi?id=1120314
https://bugzilla.redhat.com/show_bug.cgi?id=1120657
https://bugzilla.redhat.com/show_bug.cgi?id=1120710
https://bugzilla.redhat.com/show_bug.cgi?id=1120730
https://bugzilla.redhat.com/show_bug.cgi?id=1120765
https://bugzilla.redhat.com/show_bug.cgi?id=1120903
https://bugzilla.redhat.com/show_bug.cgi?id=1121097
https://bugzilla.redhat.com/show_bug.cgi?id=1121098
https://bugzilla.redhat.com/show_bug.cgi?id=1121516
https://bugzilla.redhat.com/show_bug.cgi?id=1121536
https://bugzilla.redhat.com/show_bug.cgi?id=1121753
https://bugzilla.redhat.com/show_bug.cgi?id=1121755
https://bugzilla.redhat.com/show_bug.cgi?id=1121938
https://bugzilla.redhat.com/show_bug.cgi?id=1121959
https://bugzilla.redhat.com/show_bug.cgi?id=1121972
https://bugzilla.redhat.com/show_bug.cgi?id=1122167
https://bugzilla.redhat.com/show_bug.cgi?id=1122188
https://bugzilla.redhat.com/show_bug.cgi?id=1122647
https://bugzilla.redhat.com/show_bug.cgi?id=1122650
https://bugzilla.redhat.com/show_bug.cgi?id=1122658
https://bugzilla.redhat.com/show_bug.cgi?id=1122715
https://bugzilla.redhat.com/show_bug.cgi?id=1122716
https://bugzilla.redhat.com/show_bug.cgi?id=1122828
https://bugzilla.redhat.com/show_bug.cgi?id=1123352
https://bugzilla.redhat.com/show_bug.cgi?id=1123360
https://bugzilla.redhat.com/show_bug.cgi?id=1123388
https://bugzilla.redhat.com/show_bug.cgi?id=1123478
https://bugzilla.redhat.com/show_bug.cgi?id=1123519
https://bugzilla.redhat.com/show_bug.cgi?id=1123815
https://bugzilla.redhat.com/show_bug.cgi?id=1123818
https://bugzilla.redhat.com/show_bug.cgi?id=1123868
https://bugzilla.redhat.com/show_bug.cgi?id=1124061
https://bugzilla.redhat.com/show_bug.cgi?id=1124386
https://bugzilla.redhat.com/show_bug.cgi?id=1124435
https://bugzilla.redhat.com/show_bug.cgi?id=1124912
https://bugzilla.redhat.com/show_bug.cgi?id=1124923
https://bugzilla.redhat.com/show_bug.cgi?id=1125003
https://bugzilla.redhat.com/show_bug.cgi?id=1125241
https://bugzilla.redhat.com/show_bug.cgi?id=1125330
https://bugzilla.redhat.com/show_bug.cgi?id=1125354
https://bugzilla.redhat.com/show_bug.cgi?id=1125394
https://bugzilla.redhat.com/show_bug.cgi?id=1125395
https://bugzilla.redhat.com/show_bug.cgi?id=1125399
https://bugzilla.redhat.com/show_bug.cgi?id=1125447
https://bugzilla.redhat.com/show_bug.cgi?id=1125831
https://bugzilla.redhat.com/show_bug.cgi?id=1126033
https://bugzilla.redhat.com/show_bug.cgi?id=1126087
https://bugzilla.redhat.com/show_bug.cgi?id=1126145
https://bugzilla.redhat.com/show_bug.cgi?id=1126446
https://bugzilla.redhat.com/show_bug.cgi?id=1126473
https://bugzilla.redhat.com/show_bug.cgi?id=1126570
https://bugzilla.redhat.com/show_bug.cgi?id=1126924
https://bugzilla.redhat.com/show_bug.cgi?id=1126937
https://bugzilla.redhat.com/show_bug.cgi?id=1126961
https://bugzilla.redhat.com/show_bug.cgi?id=1127090
https://bugzilla.redhat.com/show_bug.cgi?id=1127397
https://bugzilla.redhat.com/show_bug.cgi?id=1127408
https://bugzilla.redhat.com/show_bug.cgi?id=1127447
https://bugzilla.redhat.com/show_bug.cgi?id=1127454
https://bugzilla.redhat.com/show_bug.cgi?id=1127589
https://bugzilla.redhat.com/show_bug.cgi?id=1128069
https://bugzilla.redhat.com/show_bug.cgi?id=1128469
https://bugzilla.redhat.com/show_bug.cgi?id=1128796
https://bugzilla.redhat.com/show_bug.cgi?id=1129090
https://bugzilla.redhat.com/show_bug.cgi?id=1129094
https://bugzilla.redhat.com/show_bug.cgi?id=1129202
https://bugzilla.redhat.com/show_bug.cgi?id=1129262
https://bugzilla.redhat.com/show_bug.cgi?id=1129526
https://bugzilla.redhat.com/show_bug.cgi?id=1129616
https://bugzilla.redhat.com/show_bug.cgi?id=1129635
https://bugzilla.redhat.com/show_bug.cgi?id=1130157
https://bugzilla.redhat.com/show_bug.cgi?id=1130224
https://bugzilla.redhat.com/show_bug.cgi?id=1130300
https://bugzilla.redhat.com/show_bug.cgi?id=1130327
https://bugzilla.redhat.com/show_bug.cgi?id=1131206
https://bugzilla.redhat.com/show_bug.cgi?id=1131238
https://bugzilla.redhat.com/show_bug.cgi?id=1131416
https://bugzilla.redhat.com/show_bug.cgi?id=1131455
https://bugzilla.redhat.com/show_bug.cgi?id=1131538
https://bugzilla.redhat.com/show_bug.cgi?id=1131549
https://bugzilla.redhat.com/show_bug.cgi?id=1131555
https://bugzilla.redhat.com/show_bug.cgi?id=1131659
https://bugzilla.redhat.com/show_bug.cgi?id=1131661
https://bugzilla.redhat.com/show_bug.cgi?id=1131668
https://bugzilla.redhat.com/show_bug.cgi?id=1131911
https://bugzilla.redhat.com/show_bug.cgi?id=1131955
https://bugzilla.redhat.com/show_bug.cgi?id=1132017
https://bugzilla.redhat.com/show_bug.cgi?id=1132174
https://bugzilla.redhat.com/show_bug.cgi?id=1132507
https://bugzilla.redhat.com/show_bug.cgi?id=1132509
https://bugzilla.redhat.com/show_bug.cgi?id=1132572
https://bugzilla.redhat.com/show_bug.cgi?id=1132576
https://bugzilla.redhat.com/show_bug.cgi?id=1132665
https://bugzilla.redhat.com/show_bug.cgi?id=1132675
https://bugzilla.redhat.com/show_bug.cgi?id=1132676
https://bugzilla.redhat.com/show_bug.cgi?id=1132817
https://bugzilla.redhat.com/show_bug.cgi?id=1132914
https://bugzilla.redhat.com/show_bug.cgi?id=1133113
https://bugzilla.redhat.com/show_bug.cgi?id=1133245
https://bugzilla.redhat.com/show_bug.cgi?id=1133557
https://bugzilla.redhat.com/show_bug.cgi?id=1133568
https://bugzilla.redhat.com/show_bug.cgi?id=1133679
https://bugzilla.redhat.com/show_bug.cgi?id=1133799
https://bugzilla.redhat.com/show_bug.cgi?id=1133845
https://bugzilla.redhat.com/show_bug.cgi?id=1134100
https://bugzilla.redhat.com/show_bug.cgi?id=1134109
https://bugzilla.redhat.com/show_bug.cgi?id=1134493
https://bugzilla.redhat.com/show_bug.cgi?id=1134737
https://bugzilla.redhat.com/show_bug.cgi?id=1135125
https://bugzilla.redhat.com/show_bug.cgi?id=1135474
https://bugzilla.redhat.com/show_bug.cgi?id=1135513
https://bugzilla.redhat.com/show_bug.cgi?id=1135651
https://bugzilla.redhat.com/show_bug.cgi?id=1135919
https://bugzilla.redhat.com/show_bug.cgi?id=1135989
https://bugzilla.redhat.com/show_bug.cgi?id=1136002
https://bugzilla.redhat.com/show_bug.cgi?id=1136056
https://bugzilla.redhat.com/show_bug.cgi?id=1136088
https://bugzilla.redhat.com/show_bug.cgi?id=1136282
https://bugzilla.redhat.com/show_bug.cgi?id=1136292
https://bugzilla.redhat.com/show_bug.cgi?id=1136369
https://bugzilla.redhat.com/show_bug.cgi?id=1138324
https://bugzilla.redhat.com/show_bug.cgi?id=1138411
https://bugzilla.redhat.com/show_bug.cgi?id=1138868
https://bugzilla.redhat.com/show_bug.cgi?id=1139576
https://bugzilla.redhat.com/show_bug.cgi?id=1139616
https://bugzilla.redhat.com/show_bug.cgi?id=1139896
https://bugzilla.redhat.com/show_bug.cgi?id=1139903
https://bugzilla.redhat.com/show_bug.cgi?id=1140313
https://bugzilla.redhat.com/show_bug.cgi?id=1140553
https://bugzilla.redhat.com/show_bug.cgi?id=1140675
https://bugzilla.redhat.com/show_bug.cgi?id=1141671
https://bugzilla.redhat.com/show_bug.cgi?id=1142160
https://bugzilla.redhat.com/show_bug.cgi?id=1142173
https://bugzilla.redhat.com/show_bug.cgi?id=1142550
https://bugzilla.redhat.com/show_bug.cgi?id=1142763
https://bugzilla.redhat.com/show_bug.cgi?id=1142878
https://bugzilla.redhat.com/show_bug.cgi?id=1143859
https://bugzilla.redhat.com/show_bug.cgi?id=1143917
https://bugzilla.redhat.com/show_bug.cgi?id=1144215
https://bugzilla.redhat.com/show_bug.cgi?id=1145146
https://bugzilla.redhat.com/show_bug.cgi?id=1145244
https://bugzilla.redhat.com/show_bug.cgi?id=1145626
https://bugzilla.redhat.com/show_bug.cgi?id=1145630
https://bugzilla.redhat.com/show_bug.cgi?id=1145637
https://bugzilla.redhat.com/show_bug.cgi?id=1145639
https://bugzilla.redhat.com/show_bug.cgi?id=1145641
https://bugzilla.redhat.com/show_bug.cgi?id=1145742
https://bugzilla.redhat.com/show_bug.cgi?id=1145858
https://bugzilla.redhat.com/show_bug.cgi?id=1145964
https://bugzilla.redhat.com/show_bug.cgi?id=1145967
https://bugzilla.redhat.com/show_bug.cgi?id=1147049
https://bugzilla.redhat.com/show_bug.cgi?id=1148363
https://bugzilla.redhat.com/show_bug.cgi?id=1148488
https://bugzilla.redhat.com/show_bug.cgi?id=1148754
https://bugzilla.redhat.com/show_bug.cgi?id=1151048
https://bugzilla.redhat.com/show_bug.cgi?id=1151093
https://bugzilla.redhat.com/show_bug.cgi?id=1151240
https://bugzilla.redhat.com/show_bug.cgi?id=1151618
https://bugzilla.redhat.com/show_bug.cgi?id=1151633
https://bugzilla.redhat.com/show_bug.cgi?id=1152238
https://bugzilla.redhat.com/show_bug.cgi?id=1152470
https://bugzilla.redhat.com/show_bug.cgi?id=1152715
https://bugzilla.redhat.com/show_bug.cgi?id=1153034
https://bugzilla.redhat.com/show_bug.cgi?id=1153060
https://bugzilla.redhat.com/show_bug.cgi?id=1153943
https://bugzilla.redhat.com/show_bug.cgi?id=1154156
https://bugzilla.redhat.com/show_bug.cgi?id=1154187
https://bugzilla.redhat.com/show_bug.cgi?id=1154380
https://bugzilla.redhat.com/show_bug.cgi?id=1154619
https://bugzilla.redhat.com/show_bug.cgi?id=1155237
https://bugzilla.redhat.com/show_bug.cgi?id=1156555
https://bugzilla.redhat.com/show_bug.cgi?id=1156629
https://bugzilla.redhat.com/show_bug.cgi?id=1158620
https://bugzilla.redhat.com/show_bug.cgi?id=1158918
https://bugzilla.redhat.com/show_bug.cgi?id=1160740
https://bugzilla.redhat.com/show_bug.cgi?id=1160804
https://bugzilla.redhat.com/show_bug.cgi?id=1160847
https://bugzilla.redhat.com/show_bug.cgi?id=1161140
https://bugzilla.redhat.com/show_bug.cgi?id=1161642
https://bugzilla.redhat.com/show_bug.cgi?id=1161809
https://bugzilla.redhat.com/show_bug.cgi?id=1162061
https://bugzilla.redhat.com/show_bug.cgi?id=1162259
https://bugzilla.redhat.com/show_bug.cgi?id=1162297
https://bugzilla.redhat.com/show_bug.cgi?id=1162541
https://bugzilla.redhat.com/show_bug.cgi?id=1162799
https://bugzilla.redhat.com/show_bug.cgi?id=1164164
https://bugzilla.redhat.com/show_bug.cgi?id=1164671
https://bugzilla.redhat.com/show_bug.cgi?id=1165043
https://bugzilla.redhat.com/show_bug.cgi?id=1165151
https://bugzilla.redhat.com/show_bug.cgi?id=1165174
https://bugzilla.redhat.com/show_bug.cgi?id=1165306
https://bugzilla.redhat.com/show_bug.cgi?id=1165470
https://bugzilla.redhat.com/show_bug.cgi?id=1165642
https://bugzilla.redhat.com/show_bug.cgi?id=1165748
https://bugzilla.redhat.com/show_bug.cgi?id=1165935
https://bugzilla.redhat.com/show_bug.cgi?id=1166157
https://bugzilla.redhat.com/show_bug.cgi?id=1166158
https://bugzilla.redhat.com/show_bug.cgi?id=1166159
https://bugzilla.redhat.com/show_bug.cgi?id=1166161
https://bugzilla.redhat.com/show_bug.cgi?id=1166162
https://bugzilla.redhat.com/show_bug.cgi?id=1166163
https://bugzilla.redhat.com/show_bug.cgi?id=1166165
https://bugzilla.redhat.com/show_bug.cgi?id=1166167
https://bugzilla.redhat.com/show_bug.cgi?id=1166307
https://bugzilla.redhat.com/show_bug.cgi?id=1166365
https://bugzilla.redhat.com/show_bug.cgi?id=1166889
https://bugzilla.redhat.com/show_bug.cgi?id=1167261
https://bugzilla.redhat.com/show_bug.cgi?id=1167417
https://bugzilla.redhat.com/show_bug.cgi?id=1167788
https://bugzilla.redhat.com/show_bug.cgi?id=1168061
https://bugzilla.redhat.com/show_bug.cgi?id=1168457
https://bugzilla.redhat.com/show_bug.cgi?id=1169289
https://bugzilla.redhat.com/show_bug.cgi?id=1169416
https://bugzilla.redhat.com/show_bug.cgi?id=1169946
https://bugzilla.redhat.com/show_bug.cgi?id=1170276
https://bugzilla.redhat.com/show_bug.cgi?id=1171092
https://bugzilla.redhat.com/show_bug.cgi?id=1171173
https://bugzilla.redhat.com/show_bug.cgi?id=1171181
https://bugzilla.redhat.com/show_bug.cgi?id=1171310
https://bugzilla.redhat.com/show_bug.cgi?id=1171669
https://bugzilla.redhat.com/show_bug.cgi?id=1172260
https://bugzilla.redhat.com/show_bug.cgi?id=1172836
https://bugzilla.redhat.com/show_bug.cgi?id=1172839
https://bugzilla.redhat.com/show_bug.cgi?id=1172842
https://bugzilla.redhat.com/show_bug.cgi?id=1172843
https://bugzilla.redhat.com/show_bug.cgi?id=1173340
https://bugzilla.redhat.com/show_bug.cgi?id=1173723
https://bugzilla.redhat.com/show_bug.cgi?id=1173724
https://bugzilla.redhat.com/show_bug.cgi?id=1173764
https://bugzilla.redhat.com/show_bug.cgi?id=1173765
https://bugzilla.redhat.com/show_bug.cgi?id=1174932
https://bugzilla.redhat.com/show_bug.cgi?id=1174944
https://bugzilla.redhat.com/show_bug.cgi?id=1175425
https://bugzilla.redhat.com/show_bug.cgi?id=1175620
https://bugzilla.redhat.com/show_bug.cgi?id=1175803
https://bugzilla.redhat.com/show_bug.cgi?id=1177377
https://bugzilla.redhat.com/show_bug.cgi?id=1177609
https://bugzilla.redhat.com/show_bug.cgi?id=1177904
https://bugzilla.redhat.com/show_bug.cgi?id=1178206
https://bugzilla.redhat.com/show_bug.cgi?id=1178928
https://bugzilla.redhat.com/show_bug.cgi?id=1179448
https://bugzilla.redhat.com/show_bug.cgi?id=1179449
https://bugzilla.redhat.com/show_bug.cgi?id=1179457
https://bugzilla.redhat.com/show_bug.cgi?id=1179462
https://bugzilla.redhat.com/show_bug.cgi?id=1179465
https://bugzilla.redhat.com/show_bug.cgi?id=1179473
https://bugzilla.redhat.com/show_bug.cgi?id=1179827
https://bugzilla.redhat.com/show_bug.cgi?id=1180051
https://bugzilla.redhat.com/show_bug.cgi?id=1180285
https://bugzilla.redhat.com/show_bug.cgi?id=1180354
https://bugzilla.redhat.com/show_bug.cgi?id=1180666
https://bugzilla.redhat.com/show_bug.cgi?id=1181237
https://bugzilla.redhat.com/show_bug.cgi?id=1181461
https://bugzilla.redhat.com/show_bug.cgi?id=1181694
https://bugzilla.redhat.com/show_bug.cgi?id=1181707
https://bugzilla.redhat.com/show_bug.cgi?id=1182195
https://bugzilla.redhat.com/show_bug.cgi?id=1182325
https://bugzilla.redhat.com/show_bug.cgi?id=1182604
https://bugzilla.redhat.com/show_bug.cgi?id=1183012
https://bugzilla.redhat.com/show_bug.cgi?id=1183127
https://bugzilla.redhat.com/show_bug.cgi?id=1183643
https://bugzilla.redhat.com/show_bug.cgi?id=1184834
https://bugzilla.redhat.com/show_bug.cgi?id=1185318
https://bugzilla.redhat.com/show_bug.cgi?id=1185401
https://bugzilla.redhat.com/show_bug.cgi?id=1185801
https://bugzilla.redhat.com/show_bug.cgi?id=1186321
https://bugzilla.redhat.com/show_bug.cgi?id=1186353
https://bugzilla.redhat.com/show_bug.cgi?id=1186440
https://bugzilla.redhat.com/show_bug.cgi?id=1186859
https://bugzilla.redhat.com/show_bug.cgi?id=1186942
https://bugzilla.redhat.com/show_bug.cgi?id=1186974
https://bugzilla.redhat.com/show_bug.cgi?id=1187011
https://bugzilla.redhat.com/show_bug.cgi?id=1187014
https://bugzilla.redhat.com/show_bug.cgi?id=1187206
https://bugzilla.redhat.com/show_bug.cgi?id=1187477
https://bugzilla.redhat.com/show_bug.cgi?id=1187480
https://bugzilla.redhat.com/show_bug.cgi?id=1187539
https://bugzilla.redhat.com/show_bug.cgi?id=1187549
https://bugzilla.redhat.com/show_bug.cgi?id=1187657
https://bugzilla.redhat.com/show_bug.cgi?id=1187687
https://bugzilla.redhat.com/show_bug.cgi?id=1187704
https://bugzilla.redhat.com/show_bug.cgi?id=1187738
https://bugzilla.redhat.com/show_bug.cgi?id=1187750
https://bugzilla.redhat.com/show_bug.cgi?id=1187760
https://bugzilla.redhat.com/show_bug.cgi?id=1187805
https://bugzilla.redhat.com/show_bug.cgi?id=1187820
https://bugzilla.redhat.com/show_bug.cgi?id=1188823
https://bugzilla.redhat.com/show_bug.cgi?id=1189289
https://bugzilla.redhat.com/show_bug.cgi?id=1189892
https://bugzilla.redhat.com/show_bug.cgi?id=1189902
https://bugzilla.redhat.com/show_bug.cgi?id=1190012
https://bugzilla.redhat.com/show_bug.cgi?id=1190013
https://bugzilla.redhat.com/show_bug.cgi?id=1190025
https://bugzilla.redhat.com/show_bug.cgi?id=1190040
https://bugzilla.redhat.com/show_bug.cgi?id=1190080
https://bugzilla.redhat.com/show_bug.cgi?id=1190088
https://bugzilla.redhat.com/show_bug.cgi?id=1190122
https://bugzilla.redhat.com/show_bug.cgi?id=1190224
https://bugzilla.redhat.com/show_bug.cgi?id=1190285
https://bugzilla.redhat.com/show_bug.cgi?id=1190323
https://bugzilla.redhat.com/show_bug.cgi?id=1190622
https://bugzilla.redhat.com/show_bug.cgi?id=1190656
https://bugzilla.redhat.com/show_bug.cgi?id=1190665
https://bugzilla.redhat.com/show_bug.cgi?id=1190693
https://bugzilla.redhat.com/show_bug.cgi?id=1190780
https://bugzilla.redhat.com/show_bug.cgi?id=1191106
https://bugzilla.redhat.com/show_bug.cgi?id=1191117
https://bugzilla.redhat.com/show_bug.cgi?id=1191214
https://bugzilla.redhat.com/show_bug.cgi?id=1191216
https://bugzilla.redhat.com/show_bug.cgi?id=1191265
https://bugzilla.redhat.com/show_bug.cgi?id=1191406
https://bugzilla.redhat.com/show_bug.cgi?id=1191422
https://bugzilla.redhat.com/show_bug.cgi?id=1191504
https://bugzilla.redhat.com/show_bug.cgi?id=1191622
https://bugzilla.redhat.com/show_bug.cgi?id=1191634
https://bugzilla.redhat.com/show_bug.cgi?id=1191666
https://bugzilla.redhat.com/show_bug.cgi?id=1191704
https://bugzilla.redhat.com/show_bug.cgi?id=1191705
https://bugzilla.redhat.com/show_bug.cgi?id=1191723
https://bugzilla.redhat.com/show_bug.cgi?id=1191953
https://bugzilla.redhat.com/show_bug.cgi?id=1192045
https://bugzilla.redhat.com/show_bug.cgi?id=1192106
https://bugzilla.redhat.com/show_bug.cgi?id=1192113
https://bugzilla.redhat.com/show_bug.cgi?id=1192163
https://bugzilla.redhat.com/show_bug.cgi?id=1192179
https://bugzilla.redhat.com/show_bug.cgi?id=1192203
https://bugzilla.redhat.com/show_bug.cgi?id=1192329
https://bugzilla.redhat.com/show_bug.cgi?id=1192484
https://bugzilla.redhat.com/show_bug.cgi?id=1192556
https://bugzilla.redhat.com/show_bug.cgi?id=1192560
https://bugzilla.redhat.com/show_bug.cgi?id=1192573
https://bugzilla.redhat.com/show_bug.cgi?id=1192581
https://bugzilla.redhat.com/show_bug.cgi?id=1192614
https://bugzilla.redhat.com/show_bug.cgi?id=1192858
https://bugzilla.redhat.com/show_bug.cgi?id=1192944
https://bugzilla.redhat.com/show_bug.cgi?id=1193023
https://bugzilla.redhat.com/show_bug.cgi?id=1193117
https://bugzilla.redhat.com/show_bug.cgi?id=1193118
https://bugzilla.redhat.com/show_bug.cgi?id=1193185
https://bugzilla.redhat.com/show_bug.cgi?id=1193460
https://bugzilla.redhat.com/show_bug.cgi?id=1193483
https://bugzilla.redhat.com/show_bug.cgi?id=1193547
https://bugzilla.redhat.com/show_bug.cgi?id=1193584
https://bugzilla.redhat.com/show_bug.cgi?id=1193671
https://bugzilla.redhat.com/show_bug.cgi?id=1193672
https://bugzilla.redhat.com/show_bug.cgi?id=1193684
https://bugzilla.redhat.com/show_bug.cgi?id=1193701
https://bugzilla.redhat.com/show_bug.cgi?id=1193791
https://bugzilla.redhat.com/show_bug.cgi?id=1193846
https://bugzilla.redhat.com/show_bug.cgi?id=1193920
https://bugzilla.redhat.com/show_bug.cgi?id=1194019
https://bugzilla.redhat.com/show_bug.cgi?id=1194173
https://bugzilla.redhat.com/show_bug.cgi?id=1194178
https://bugzilla.redhat.com/show_bug.cgi?id=1194204
https://bugzilla.redhat.com/show_bug.cgi?id=1194221
https://bugzilla.redhat.com/show_bug.cgi?id=1194331
https://bugzilla.redhat.com/show_bug.cgi?id=1194343
https://bugzilla.redhat.com/show_bug.cgi?id=1194396
https://bugzilla.redhat.com/show_bug.cgi?id=1194441
https://bugzilla.redhat.com/show_bug.cgi?id=1194443
https://bugzilla.redhat.com/show_bug.cgi?id=1194444
https://bugzilla.redhat.com/show_bug.cgi?id=1194447
https://bugzilla.redhat.com/show_bug.cgi?id=1194486
https://bugzilla.redhat.com/show_bug.cgi?id=1194531
https://bugzilla.redhat.com/show_bug.cgi?id=1194627
https://bugzilla.redhat.com/show_bug.cgi?id=1194641
https://bugzilla.redhat.com/show_bug.cgi?id=1194664
https://bugzilla.redhat.com/show_bug.cgi?id=1194691
https://bugzilla.redhat.com/show_bug.cgi?id=1194767
https://bugzilla.redhat.com/show_bug.cgi?id=1194773
https://bugzilla.redhat.com/show_bug.cgi?id=1194784
https://bugzilla.redhat.com/show_bug.cgi?id=1194997
https://bugzilla.redhat.com/show_bug.cgi?id=1195212
https://bugzilla.redhat.com/show_bug.cgi?id=1195262
https://bugzilla.redhat.com/show_bug.cgi?id=1195329
https://bugzilla.redhat.com/show_bug.cgi?id=1195602
https://bugzilla.redhat.com/show_bug.cgi?id=1195628
https://bugzilla.redhat.com/show_bug.cgi?id=1195630
https://bugzilla.redhat.com/show_bug.cgi?id=1195637
https://bugzilla.redhat.com/show_bug.cgi?id=1195690
https://bugzilla.redhat.com/show_bug.cgi?id=1195760
https://bugzilla.redhat.com/show_bug.cgi?id=1195972
https://bugzilla.redhat.com/show_bug.cgi?id=1196156
https://bugzilla.redhat.com/show_bug.cgi?id=1196283
https://bugzilla.redhat.com/show_bug.cgi?id=1196339
https://bugzilla.redhat.com/show_bug.cgi?id=1196534
https://bugzilla.redhat.com/show_bug.cgi?id=1196574
https://bugzilla.redhat.com/show_bug.cgi?id=1196621
https://bugzilla.redhat.com/show_bug.cgi?id=1196715
https://bugzilla.redhat.com/show_bug.cgi?id=1196720
https://bugzilla.redhat.com/show_bug.cgi?id=1196742
https://bugzilla.redhat.com/show_bug.cgi?id=1196758
https://bugzilla.redhat.com/show_bug.cgi?id=1196777
https://bugzilla.redhat.com/show_bug.cgi?id=1196996
https://bugzilla.redhat.com/show_bug.cgi?id=1197090
https://bugzilla.redhat.com/show_bug.cgi?id=1197477
https://bugzilla.redhat.com/show_bug.cgi?id=1197764
https://bugzilla.redhat.com/show_bug.cgi?id=1197806
https://bugzilla.redhat.com/show_bug.cgi?id=1197836
https://bugzilla.redhat.com/show_bug.cgi?id=1198233
https://bugzilla.redhat.com/show_bug.cgi?id=1198238
https://bugzilla.redhat.com/show_bug.cgi?id=1198242
https://bugzilla.redhat.com/show_bug.cgi?id=1198245
https://bugzilla.redhat.com/show_bug.cgi?id=1198307
https://bugzilla.redhat.com/show_bug.cgi?id=1198320
https://bugzilla.redhat.com/show_bug.cgi?id=1198338
https://bugzilla.redhat.com/show_bug.cgi?id=1198363
https://bugzilla.redhat.com/show_bug.cgi?id=1198370
https://bugzilla.redhat.com/show_bug.cgi?id=1198464
https://bugzilla.redhat.com/show_bug.cgi?id=1198752
https://bugzilla.redhat.com/show_bug.cgi?id=1198797
https://bugzilla.redhat.com/show_bug.cgi?id=1198815
https://bugzilla.redhat.com/show_bug.cgi?id=1199078
https://bugzilla.redhat.com/show_bug.cgi?id=1199246
https://bugzilla.redhat.com/show_bug.cgi?id=1199304
https://bugzilla.redhat.com/show_bug.cgi?id=1199514
https://bugzilla.redhat.com/show_bug.cgi?id=1199584
https://bugzilla.redhat.com/show_bug.cgi?id=1199626
https://bugzilla.redhat.com/show_bug.cgi?id=1199674
https://bugzilla.redhat.com/show_bug.cgi?id=1199751
https://bugzilla.redhat.com/show_bug.cgi?id=1199990
https://bugzilla.redhat.com/show_bug.cgi?id=1200015
https://bugzilla.redhat.com/show_bug.cgi?id=1200142
https://bugzilla.redhat.com/show_bug.cgi?id=1200441
https://bugzilla.redhat.com/show_bug.cgi?id=1200540
https://bugzilla.redhat.com/show_bug.cgi?id=1200571
https://bugzilla.redhat.com/show_bug.cgi?id=1200877
https://bugzilla.redhat.com/show_bug.cgi?id=1200881
https://bugzilla.redhat.com/show_bug.cgi?id=1201008
https://bugzilla.redhat.com/show_bug.cgi?id=1201011
https://bugzilla.redhat.com/show_bug.cgi?id=1201347
https://bugzilla.redhat.com/show_bug.cgi?id=1201364
https://bugzilla.redhat.com/show_bug.cgi?id=1201406
https://bugzilla.redhat.com/show_bug.cgi?id=1201410
https://bugzilla.redhat.com/show_bug.cgi?id=1201432
https://bugzilla.redhat.com/show_bug.cgi?id=1201598
https://bugzilla.redhat.com/show_bug.cgi?id=1201606
https://bugzilla.redhat.com/show_bug.cgi?id=1201735
https://bugzilla.redhat.com/show_bug.cgi?id=1201918
https://bugzilla.redhat.com/show_bug.cgi?id=1201924
https://bugzilla.redhat.com/show_bug.cgi?id=1201934
https://bugzilla.redhat.com/show_bug.cgi?id=1202089
https://bugzilla.redhat.com/show_bug.cgi?id=1202779
https://bugzilla.redhat.com/show_bug.cgi?id=1202994
https://bugzilla.redhat.com/show_bug.cgi?id=1203424
https://bugzilla.redhat.com/show_bug.cgi?id=1203851
https://bugzilla.redhat.com/show_bug.cgi?id=1203853
https://bugzilla.redhat.com/show_bug.cgi?id=1204301
https://bugzilla.redhat.com/show_bug.cgi?id=1204916
https://bugzilla.redhat.com/show_bug.cgi?id=1204925
https://bugzilla.redhat.com/show_bug.cgi?id=1204949
https://bugzilla.redhat.com/show_bug.cgi?id=1205731
https://bugzilla.redhat.com/show_bug.cgi?id=1205826
https://bugzilla.redhat.com/show_bug.cgi?id=1205921
https://bugzilla.redhat.com/show_bug.cgi?id=1206327
https://bugzilla.redhat.com/show_bug.cgi?id=1206611
https://bugzilla.redhat.com/show_bug.cgi?id=1206716
https://bugzilla.redhat.com/show_bug.cgi?id=1233084
https://bugzilla.redhat.com/show_bug.cgi?id=842293
https://bugzilla.redhat.com/show_bug.cgi?id=873311
https://bugzilla.redhat.com/show_bug.cgi?id=883170
https://bugzilla.redhat.com/show_bug.cgi?id=909996
https://bugzilla.redhat.com/show_bug.cgi?id=910078
https://bugzilla.redhat.com/show_bug.cgi?id=973826
Plugin Details
Severity: High
ID: 85716
File Name: redhat-RHSA-2015-1592.nasl
Version: 2.11
Type: local
Agent: unix
Family: Red Hat Local Security Checks
Published: 9/1/2015
Updated: 8/15/2025
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.5
Vendor
Vendor Severity: Important
CVSS v2
Risk Factor: Medium
Base Score: 6
Temporal Score: 4.7
Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P
CVSS Score Source: CVE-2015-3235
CVSS v3
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 5.9
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
CVSS Score Source: CVE-2014-3590
CVSS v4
Risk Factor: High
Base Score: 8.7
Threat Score: 7.7
Threat Vector: CVSS:4.0/E:P
Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
CVSS Score Source: CVE-2013-4346
Vulnerability Information
CPE: p-cpe:/a:redhat:enterprise_linux:python-jinja2-26, p-cpe:/a:redhat:enterprise_linux:ipxe, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-angular-rails-templates, p-cpe:/a:redhat:enterprise_linux:v8, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-trollop, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-runcible, p-cpe:/a:redhat:enterprise_linux:foreman-postgresql, p-cpe:/a:redhat:enterprise_linux:rubygem-multi_json, p-cpe:/a:redhat:enterprise_linux:qpid-java-common, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-multi_json-doc, p-cpe:/a:redhat:enterprise_linux:logback-classic, p-cpe:/a:redhat:enterprise_linux:python-requests, p-cpe:/a:redhat:enterprise_linux:slf4j-api, p-cpe:/a:redhat:enterprise_linux:rubygem-hammer_cli_gutterball, p-cpe:/a:redhat:enterprise_linux:rubygem-rack-protection, p-cpe:/a:redhat:enterprise_linux:istack-commons-runtime, p-cpe:/a:redhat:enterprise_linux:slf4j, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-fog-json, p-cpe:/a:redhat:enterprise_linux:qpid-cpp-client, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-extlib, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-hooks, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-strong_parameters, p-cpe:/a:redhat:enterprise_linux:bouncycastle, p-cpe:/a:redhat:enterprise_linux:rubygem-rdoc, p-cpe:/a:redhat:enterprise_linux:pulp-server, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-foreman_discovery, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-unf, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-haml-rails, p-cpe:/a:redhat:enterprise_linux:katello-installer-base, p-cpe:/a:redhat:enterprise_linux:apache-mime4j, p-cpe:/a:redhat:enterprise_linux:jboss-transaction-api_1.1_spec, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-foreman_hooks, p-cpe:/a:redhat:enterprise_linux:jsr-311, p-cpe:/a:redhat:enterprise_linux:sun-txw2, p-cpe:/a:redhat:enterprise_linux:rubygem-rake, p-cpe:/a:redhat:enterprise_linux:candlepin-scl-runtime, p-cpe:/a:redhat:enterprise_linux:jaxb-impl, p-cpe:/a:redhat:enterprise_linux:qpid-cpp-client-devel, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-passenger-native-libs, p-cpe:/a:redhat:enterprise_linux:jackson-datatype-hibernate, p-cpe:/a:redhat:enterprise_linux:ruby193-ruby-wrapper, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-archive-tar-minitar, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-ruby_parser, p-cpe:/a:redhat:enterprise_linux:bcmail, p-cpe:/a:redhat:enterprise_linux:python-semantic-version, p-cpe:/a:redhat:enterprise_linux:pulp-nodes-common, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-openscap, p-cpe:/a:redhat:enterprise_linux:rubygem-hammer_cli_import, p-cpe:/a:redhat:enterprise_linux:puppetlabs-stdlib, p-cpe:/a:redhat:enterprise_linux:jackson-datatype-hibernate4, p-cpe:/a:redhat:enterprise_linux:rubygem-highline, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-tire, p-cpe:/a:redhat:enterprise_linux:rubygem-table_print, p-cpe:/a:redhat:enterprise_linux:openscap-scanner, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-gettext_i18n_rails, p-cpe:/a:redhat:enterprise_linux:qpid-tools, p-cpe:/a:redhat:enterprise_linux:foreman-gce, p-cpe:/a:redhat:enterprise_linux:gettext-commons, p-cpe:/a:redhat:enterprise_linux:rubygem-apipie-bindings, p-cpe:/a:redhat:enterprise_linux:python-pymongo-gridfs, p-cpe:/a:redhat:enterprise_linux:qpid-java-client, p-cpe:/a:redhat:enterprise_linux:rubygem-smart_proxy_abrt, p-cpe:/a:redhat:enterprise_linux:google-collections, p-cpe:/a:redhat:enterprise_linux:sigar-java, p-cpe:/a:redhat:enterprise_linux:rubygem-rack, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-uuidtools, p-cpe:/a:redhat:enterprise_linux:pyliblzma, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-jquery-ui-rails, p-cpe:/a:redhat:enterprise_linux:rubygem-passenger-native, p-cpe:/a:redhat:enterprise_linux:katello-utils, p-cpe:/a:redhat:enterprise_linux:httpcomponents, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-rbvmomi, p-cpe:/a:redhat:enterprise_linux:katello-service, p-cpe:/a:redhat:enterprise_linux:python-crane, p-cpe:/a:redhat:enterprise_linux:ruby-shadow, p-cpe:/a:redhat:enterprise_linux:python-qpid-qmf, p-cpe:/a:redhat:enterprise_linux:rubygem-hammer_cli, p-cpe:/a:redhat:enterprise_linux:qpid-dispatch-tools, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-fog-radosgw, p-cpe:/a:redhat:enterprise_linux:foreman-ovirt, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-ipaddress, p-cpe:/a:redhat:enterprise_linux:rubygem-passenger-native-libs, p-cpe:/a:redhat:enterprise_linux:httpcomponents-client, p-cpe:/a:redhat:enterprise_linux:livecd-tools, p-cpe:/a:redhat:enterprise_linux:scannotation, p-cpe:/a:redhat:enterprise_linux:mongodb-server, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-fog, p-cpe:/a:redhat:enterprise_linux:katello, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-apipie-rails, p-cpe:/a:redhat:enterprise_linux:oauth, p-cpe:/a:redhat:enterprise_linux:python-httplib2, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-sprockets-doc, p-cpe:/a:redhat:enterprise_linux:rubygem-gssapi, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-pg, p-cpe:/a:redhat:enterprise_linux:gofer, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-hpricot, p-cpe:/a:redhat:enterprise_linux:rubygem-json, p-cpe:/a:redhat:enterprise_linux:httpcore, p-cpe:/a:redhat:enterprise_linux:fasterxml-oss-parent, p-cpe:/a:redhat:enterprise_linux:httpclient, p-cpe:/a:redhat:enterprise_linux:python-blinker, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-formatador, p-cpe:/a:redhat:enterprise_linux:pulp-rpm-handlers, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-ovirt_provision_plugin, p-cpe:/a:redhat:enterprise_linux:sun-istack-commons, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-justified, p-cpe:/a:redhat:enterprise_linux:rubygem-fast_gettext, p-cpe:/a:redhat:enterprise_linux:rubygem-logging, p-cpe:/a:redhat:enterprise_linux:puppet, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-addressable, p-cpe:/a:redhat:enterprise_linux:hibernate4-core, p-cpe:/a:redhat:enterprise_linux:python-bson, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-anemone, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-docker-api, p-cpe:/a:redhat:enterprise_linux:foreman-vmware, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-bundler_ext, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-will_paginate, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-scoped_search, p-cpe:/a:redhat:enterprise_linux:candlepin-scl-quartz, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-robotex, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-gettext_i18n_rails_js, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-deface, p-cpe:/a:redhat:enterprise_linux:objectweb-asm, p-cpe:/a:redhat:enterprise_linux:pulp-docker, p-cpe:/a:redhat:enterprise_linux:createrepo_c-libs, p-cpe:/a:redhat:enterprise_linux:python-okaara, p-cpe:/a:redhat:enterprise_linux:jackson-databind, p-cpe:/a:redhat:enterprise_linux:python-pulp-puppet-common, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-foreman_bootdisk, p-cpe:/a:redhat:enterprise_linux:sigar, p-cpe:/a:redhat:enterprise_linux:pulp-nodes-child, p-cpe:/a:redhat:enterprise_linux:python-werkzeug, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-excon, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-oauth, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-algebrick, p-cpe:/a:redhat:enterprise_linux:jcl-over-slf4j, p-cpe:/a:redhat:enterprise_linux:rubygem-bundler_ext, p-cpe:/a:redhat:enterprise_linux:pulp-docker-plugins, p-cpe:/a:redhat:enterprise_linux:rubygem-hammer_cli_foreman, p-cpe:/a:redhat:enterprise_linux:hornetq, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-ancestry, p-cpe:/a:redhat:enterprise_linux:python-gofer, p-cpe:/a:redhat:enterprise_linux:javassist, p-cpe:/a:redhat:enterprise_linux:python-anyjson, p-cpe:/a:redhat:enterprise_linux:ruby-rgen, p-cpe:/a:redhat:enterprise_linux:logback-core, p-cpe:/a:redhat:enterprise_linux:python-billiard, p-cpe:/a:redhat:enterprise_linux:netty, p-cpe:/a:redhat:enterprise_linux:foreman-proxy, p-cpe:/a:redhat:enterprise_linux:python-importlib, p-cpe:/a:redhat:enterprise_linux:resteasy, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-faraday, p-cpe:/a:redhat:enterprise_linux:gperftools-libs, p-cpe:/a:redhat:enterprise_linux:pulp, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-net-ldap, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-sass, p-cpe:/a:redhat:enterprise_linux:rubygem-ffi, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-qpid_messaging, p-cpe:/a:redhat:enterprise_linux:rubygem-hammer_cli_katello, p-cpe:/a:redhat:enterprise_linux:pyparsing, p-cpe:/a:redhat:enterprise_linux:rubygem-fastercsv, p-cpe:/a:redhat:enterprise_linux:elasticsearch, p-cpe:/a:redhat:enterprise_linux:ruby193-facter, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-audited, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-bastion, p-cpe:/a:redhat:enterprise_linux:foreman-libvirt, p-cpe:/a:redhat:enterprise_linux:rubygem-oauth, p-cpe:/a:redhat:enterprise_linux:glassfish-jaxb, p-cpe:/a:redhat:enterprise_linux:puppet-foreman_scap_client, p-cpe:/a:redhat:enterprise_linux:foreman, p-cpe:/a:redhat:enterprise_linux:katello-common, p-cpe:/a:redhat:enterprise_linux:liquibase, p-cpe:/a:redhat:enterprise_linux:python-beautifulsoup, p-cpe:/a:redhat:enterprise_linux:qpid-cpp-server, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-haml, p-cpe:/a:redhat:enterprise_linux:pulp-nodes-parent, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-foreman_openscap, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-deep_cloneable, p-cpe:/a:redhat:enterprise_linux:python-kombu, p-cpe:/a:redhat:enterprise_linux:rubygem-satyr, p-cpe:/a:redhat:enterprise_linux:qpid-dispatch, p-cpe:/a:redhat:enterprise_linux:bcprov, p-cpe:/a:redhat:enterprise_linux:capsule-installer, p-cpe:/a:redhat:enterprise_linux:rubygem-little-plugger, p-cpe:/a:redhat:enterprise_linux:katello-installer, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-scaptimony, p-cpe:/a:redhat:enterprise_linux:rubygem-ansi, p-cpe:/a:redhat:enterprise_linux:hibernate3-commons-annotations, p-cpe:/a:redhat:enterprise_linux:qpid-proton, p-cpe:/a:redhat:enterprise_linux:snappy-java, p-cpe:/a:redhat:enterprise_linux:python-nectar, p-cpe:/a:redhat:enterprise_linux:foreman-selinux, p-cpe:/a:redhat:enterprise_linux:python-saslwrapper, p-cpe:/a:redhat:enterprise_linux:mod_passenger, p-cpe:/a:redhat:enterprise_linux:rubygem-mime-types, p-cpe:/a:redhat:enterprise_linux:createrepo_c, p-cpe:/a:redhat:enterprise_linux:ipxe-bootimgs, p-cpe:/a:redhat:enterprise_linux:rubygem-hammer_cli_foreman_discovery, p-cpe:/a:redhat:enterprise_linux:foreman-compute, p-cpe:/a:redhat:enterprise_linux:rubygem-sinatra, p-cpe:/a:redhat:enterprise_linux:python-isodate, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-safemode, p-cpe:/a:redhat:enterprise_linux:katello-debug, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-logging, p-cpe:/a:redhat:enterprise_linux:pulp-puppet-admin-extensions, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-jwt, p-cpe:/a:redhat:enterprise_linux:python-gofer-proton, p-cpe:/a:redhat:enterprise_linux:python-oauth2, p-cpe:/a:redhat:enterprise_linux:hibernate4-c3p0, p-cpe:/a:redhat:enterprise_linux:istack-commons, p-cpe:/a:redhat:enterprise_linux:jackson-jaxrs-base, p-cpe:/a:redhat:enterprise_linux:rubygem-smart_proxy_pulp, p-cpe:/a:redhat:enterprise_linux:logback-parent, p-cpe:/a:redhat:enterprise_linux:python-pulp-common, p-cpe:/a:redhat:enterprise_linux:jboss-common-core, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-multi_json, p-cpe:/a:redhat:enterprise_linux:python-cherrypy, p-cpe:/a:redhat:enterprise_linux:slf4j-parent, p-cpe:/a:redhat:enterprise_linux:atinject, p-cpe:/a:redhat:enterprise_linux:jackson-jaxrs-providers, p-cpe:/a:redhat:enterprise_linux:rubygem-kafo_parsers, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-nokogiri, p-cpe:/a:redhat:enterprise_linux:saslwrapper, p-cpe:/a:redhat:enterprise_linux:hiera, cpe:/o:redhat:enterprise_linux:6, p-cpe:/a:redhat:enterprise_linux:sisu-cglib, p-cpe:/a:redhat:enterprise_linux:candlepin-scl-rhino, p-cpe:/a:redhat:enterprise_linux:jackson-jaxrs-json-provider, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-foreigner, p-cpe:/a:redhat:enterprise_linux:python-pulp-agent-lib, p-cpe:/a:redhat:enterprise_linux:rubygem-rb-readline, p-cpe:/a:redhat:enterprise_linux:gperftools, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-daemons, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-less-rails, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-net-ssh, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-little-plugger, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-hashr, p-cpe:/a:redhat:enterprise_linux:jackson-datatype-hibernate-parent, p-cpe:/a:redhat:enterprise_linux:glassfish-javamail, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-autoparse, p-cpe:/a:redhat:enterprise_linux:python-pulp-bindings, p-cpe:/a:redhat:enterprise_linux:jackson-annotations, p-cpe:/a:redhat:enterprise_linux:mongodb, p-cpe:/a:redhat:enterprise_linux:httpcomponents-core, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-unf_ext, p-cpe:/a:redhat:enterprise_linux:qpid-proton-c, p-cpe:/a:redhat:enterprise_linux:rubygem-smart_proxy_discovery, p-cpe:/a:redhat:enterprise_linux:rubygem-multi_json-doc, p-cpe:/a:redhat:enterprise_linux:jboss-specs-parent, p-cpe:/a:redhat:enterprise_linux:python-qpid-proton, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-redhat_access_lib, p-cpe:/a:redhat:enterprise_linux:python-pulp-docker-common, p-cpe:/a:redhat:enterprise_linux:qpid-cpp-server-linearstore, p-cpe:/a:redhat:enterprise_linux:qpid-dispatch-router, p-cpe:/a:redhat:enterprise_linux:ruby-augeas, p-cpe:/a:redhat:enterprise_linux:qpid-cpp-server-devel, p-cpe:/a:redhat:enterprise_linux:rubygem-thor, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-ansi, p-cpe:/a:redhat:enterprise_linux:candlepin-scl, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-fog-xml, p-cpe:/a:redhat:enterprise_linux:python-flask, p-cpe:/a:redhat:enterprise_linux:pulp-puppet-plugins, p-cpe:/a:redhat:enterprise_linux:python-itsdangerous, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-ffi, p-cpe:/a:redhat:enterprise_linux:pulp-puppet, p-cpe:/a:redhat:enterprise_linux:python-qpid, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-signet, p-cpe:/a:redhat:enterprise_linux:katello-certs-tools, p-cpe:/a:redhat:enterprise_linux:foreman-debug, p-cpe:/a:redhat:enterprise_linux:rubygem-foreman_scap_client, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-sshkey, p-cpe:/a:redhat:enterprise_linux:rubygem-clamp, p-cpe:/a:redhat:enterprise_linux:aopalliance, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-wicked, p-cpe:/a:redhat:enterprise_linux:httpcomponents-project, p-cpe:/a:redhat:enterprise_linux:glassfish-jaf, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-net-scp, p-cpe:/a:redhat:enterprise_linux:rubygem-awesome_print, p-cpe:/a:redhat:enterprise_linux:jboss-logging, p-cpe:/a:redhat:enterprise_linux:pulp-admin-client, p-cpe:/a:redhat:enterprise_linux:openscap-utils, p-cpe:/a:redhat:enterprise_linux:rubygem-hammer_cli_foreman_docker-doc, p-cpe:/a:redhat:enterprise_linux:rubygem-locale, p-cpe:/a:redhat:enterprise_linux:hibernate4, p-cpe:/a:redhat:enterprise_linux:pulp-puppet-tools, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-ruby2ruby, p-cpe:/a:redhat:enterprise_linux:qpid-cpp, p-cpe:/a:redhat:enterprise_linux:candlepin-common, p-cpe:/a:redhat:enterprise_linux:jboss-jaxb-api_2.2_spec, p-cpe:/a:redhat:enterprise_linux:hibernate-jpa-2.0-api, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-fog-core, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-secure_headers, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-google-api-client, p-cpe:/a:redhat:enterprise_linux:rubygem-kafo, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-friendly_id, p-cpe:/a:redhat:enterprise_linux:qpid-qmf, p-cpe:/a:redhat:enterprise_linux:puppet-server, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-sprockets, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-fog-sakuracloud, p-cpe:/a:redhat:enterprise_linux:dom4j, p-cpe:/a:redhat:enterprise_linux:jackson-module-jaxb-annotations, p-cpe:/a:redhat:enterprise_linux:rubygem-bundler, p-cpe:/a:redhat:enterprise_linux:jsr311-api, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-apipie-params, p-cpe:/a:redhat:enterprise_linux:libqpid-dispatch, p-cpe:/a:redhat:enterprise_linux:openscap, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-commonjs, p-cpe:/a:redhat:enterprise_linux:python-pulp-client-lib, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-multipart-post, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-foreman-redhat_access, p-cpe:/a:redhat:enterprise_linux:qpid-java, p-cpe:/a:redhat:enterprise_linux:python-amqp, p-cpe:/a:redhat:enterprise_linux:rubygem-hammer_cli_csv, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-po_to_json, p-cpe:/a:redhat:enterprise_linux:python-pulp-rpm-common, p-cpe:/a:redhat:enterprise_linux:rubygem-smart_proxy_openscap, p-cpe:/a:redhat:enterprise_linux:candlepin, p-cpe:/a:redhat:enterprise_linux:rubygem-hammer_cli_foreman_bootdisk, p-cpe:/a:redhat:enterprise_linux:python-imgcreate, p-cpe:/a:redhat:enterprise_linux:rubygem-hashie, p-cpe:/a:redhat:enterprise_linux:bcpg, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-foreman_abrt, p-cpe:/a:redhat:enterprise_linux:candlepin-tomcat6, p-cpe:/a:redhat:enterprise_linux:rubygem-powerbar, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-passenger-native, p-cpe:/a:redhat:enterprise_linux:pulp-rpm-plugins, p-cpe:/a:redhat:enterprise_linux:python-gofer-qpid, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-foreman-tasks, p-cpe:/a:redhat:enterprise_linux:python-mongoengine, p-cpe:/a:redhat:enterprise_linux:rubygem-rkerberos, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-fog-softlayer, p-cpe:/a:redhat:enterprise_linux:hibernate-beanvalidation-api, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-rbovirt, p-cpe:/a:redhat:enterprise_linux:python-webpy, p-cpe:/a:redhat:enterprise_linux:jackson-core, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-fog-brightbox, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-validates_lengths_from_database, p-cpe:/a:redhat:enterprise_linux:rubygem-rubyipmi, p-cpe:/a:redhat:enterprise_linux:apache-commons-codec-eap6, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-ldap_fluff, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-audited-activerecord, p-cpe:/a:redhat:enterprise_linux:rubygem-hammer_cli_foreman_docker, p-cpe:/a:redhat:enterprise_linux:openscap-python, p-cpe:/a:redhat:enterprise_linux:jaxb-project, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-ruby-libvirt, p-cpe:/a:redhat:enterprise_linux:lucene4, p-cpe:/a:redhat:enterprise_linux:pulp-katello, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-rest-client, p-cpe:/a:redhat:enterprise_linux:hibernate4-entitymanager, p-cpe:/a:redhat:enterprise_linux:pulp-rpm-admin-extensions, p-cpe:/a:redhat:enterprise_linux:foreman-discovery-image, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-i18n_data, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-sequel, p-cpe:/a:redhat:enterprise_linux:rubygem-tilt, p-cpe:/a:redhat:enterprise_linux:libmongodb, p-cpe:/a:redhat:enterprise_linux:python-celery, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-dynflow, p-cpe:/a:redhat:enterprise_linux:rubygem-hammer_cli_foreman_tasks, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-sass-doc, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-launchy, p-cpe:/a:redhat:enterprise_linux:mod_wsgi, p-cpe:/a:redhat:enterprise_linux:pulp-rpm, p-cpe:/a:redhat:enterprise_linux:katello-agent, p-cpe:/a:redhat:enterprise_linux:c3p0, p-cpe:/a:redhat:enterprise_linux:pulp-selinux, p-cpe:/a:redhat:enterprise_linux:jbossts, p-cpe:/a:redhat:enterprise_linux:lucene4-contrib, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-rabl, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-passenger, p-cpe:/a:redhat:enterprise_linux:rubygem-passenger, p-cpe:/a:redhat:enterprise_linux:bctsp, p-cpe:/a:redhat:enterprise_linux:logback, p-cpe:/a:redhat:enterprise_linux:python-pymongo, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-less, p-cpe:/a:redhat:enterprise_linux:google-guice, p-cpe:/a:redhat:enterprise_linux:rubygem-rest-client, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-fast_gettext, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-foreman_gutterball, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-sexp_processor, p-cpe:/a:redhat:enterprise_linux:gutterball, p-cpe:/a:redhat:enterprise_linux:candlepin-selinux, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-foreman_docker, p-cpe:/a:redhat:enterprise_linux:hibernate4-validator, p-cpe:/a:redhat:enterprise_linux:ruby193-rubygem-katello, p-cpe:/a:redhat:enterprise_linux:facter
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 8/12/2015
Vulnerability Publication Date: 5/20/2014
Reference Information
CVE: CVE-2013-4346, CVE-2013-4347, CVE-2014-3590, CVE-2014-3653, CVE-2015-1816, CVE-2015-1844, CVE-2015-3155, CVE-2015-3235