5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
5.3%
CentOS Errata and Security Advisory CESA-2016:2597
firewalld is a firewall service daemon that provides a dynamic customizable firewall with a D-Bus interface.
The following packages have been upgraded to a newer upstream version: firewalld (0.4.3.2). (BZ#1302802)
Security Fix(es):
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.3 Release Notes linked from the References section.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-cr-announce/2016-November/029861.html
Affected packages:
firewall-applet
firewall-config
firewalld
firewalld-filesystem
python-firewall
Upstream details at:
https://access.redhat.com/errata/RHSA-2016:2597
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 7 | noarch | firewall-applet | <Â 0.4.3.2-8.el7 | firewall-applet-0.4.3.2-8.el7.noarch.rpm |
CentOS | 7 | noarch | firewall-config | <Â 0.4.3.2-8.el7 | firewall-config-0.4.3.2-8.el7.noarch.rpm |
CentOS | 7 | noarch | firewalld | <Â 0.4.3.2-8.el7 | firewalld-0.4.3.2-8.el7.noarch.rpm |
CentOS | 7 | noarch | firewalld-filesystem | <Â 0.4.3.2-8.el7 | firewalld-filesystem-0.4.3.2-8.el7.noarch.rpm |
CentOS | 7 | noarch | python-firewall | <Â 0.4.3.2-8.el7 | python-firewall-0.4.3.2-8.el7.noarch.rpm |
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
2.1 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
0.0004 Low
EPSS
Percentile
5.3%