{"title": "CVE-2014-1869", "reporter": "NVD", "published": "2014-02-07T19:55:06", "cpe": ["cpe:/a:zeroclipboard_project:zeroclipboard:1.0.5", "cpe:/a:zeroclipboard_project:zeroclipboard:1.2.0", "cpe:/a:zeroclipboard_project:zeroclipboard:1.2.3", "cpe:/a:redhat:openshift:3.1::~~enterprise~~~", "cpe:/a:zeroclipboard_project:zeroclipboard:1.2.1", "cpe:/a:zeroclipboard_project:zeroclipboard:1.3.1", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.4", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.5", "cpe:/a:zeroclipboard_project:zeroclipboard:1.2.2", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.7", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.6", "cpe:/a:zeroclipboard_project:zeroclipboard:1.0.8", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.0", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.3", "cpe:/a:zeroclipboard_project:zeroclipboard:1.0.7", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.2", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.1", "cpe:/a:zeroclipboard_project:zeroclipboard:1.3.0"], "cvelist": ["CVE-2014-1869"], "viewCount": 1, "objectVersion": "1.3", "type": "cve", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-1869", "bulletinFamily": "NVD", "hashmap": [{"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "d9567467c180a0eb051a81c1bc2c24b4", "key": "cpe"}, {"hash": "75cd83f49e423ca3f79797049b1acdce", "key": "cvelist"}, {"hash": "6e9bdd2021503689a2ad9254c9cdf2b3", "key": "cvss"}, {"hash": "067e655f5b97c56f5e7554c4ec8af41b", "key": "description"}, {"hash": "213255f50aa1bd88d65226611186ba9b", "key": "href"}, {"hash": "df2e727bcfa68b65288f04ad313f7605", "key": "modified"}, {"hash": "ce1c674ef80eb674334424c8d7ac6f10", "key": "published"}, {"hash": "9c5d3675864c2ffd8284ec321c262009", "key": "references"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "60c7e80ef0ce1ed9b8b5d2135305c275", "key": "title"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}], "history": [{"bulletin": {"reporter": "NVD", "published": "2014-02-07T19:55:06", "cvelist": ["CVE-2014-1869"], "title": "CVE-2014-1869", "objectVersion": "1.2", "description": "Multiple cross-site scripting (XSS) vulnerabilities in ZeroClipboard.swf in ZeroClipboard before 1.3.2, as maintained by Jon Rohan and James M. Greene, allow remote attackers to inject arbitrary web script or HTML via vectors related to certain SWF query parameters (aka loaderInfo.parameters).", "type": "cve", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-1869", "bulletinFamily": "NVD", "id": "CVE-2014-1869", "history": [], "scanner": [], "enchantments": {}, "modified": "2016-03-23T10:55:50", "hash": "a75e9381aeb24706da952ca6e61f71d4bd755c0c7ec462a6cd07fe32f5797fa6", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "viewCount": 0, "edition": 1, "cpe": ["cpe:/a:zeroclipboard_project:zeroclipboard:1.0.5", "cpe:/a:zeroclipboard_project:zeroclipboard:1.2.0", "cpe:/a:zeroclipboard_project:zeroclipboard:1.2.3", "cpe:/a:redhat:openshift:3.1::~~enterprise~~~", "cpe:/a:zeroclipboard_project:zeroclipboard:1.2.1", "cpe:/a:zeroclipboard_project:zeroclipboard:1.3.1", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.4", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.5", "cpe:/a:zeroclipboard_project:zeroclipboard:1.2.2", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.7", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.6", "cpe:/a:zeroclipboard_project:zeroclipboard:1.0.8", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.0", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.3", "cpe:/a:zeroclipboard_project:zeroclipboard:1.0.7", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.2", "cpe:/a:zeroclipboard_project:zeroclipboard:1.1.1", "cpe:/a:zeroclipboard_project:zeroclipboard:1.3.0"], "references": ["http://xforce.iss.net/xforce/xfdb/91085", "https://github.com/zeroclipboard/zeroclipboard/releases/tag/v1.3.2", "https://access.redhat.com/errata/RHSA-2016:0070", "http://www.securityfocus.com/bid/65484", "https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01", "https://github.com/zeroclipboard/zeroclipboard/pull/335", "https://github.com/zeroclipboard/zeroclipboard/commit/2f9eb9750a433965572d047e24b0fc78fd1415ca"], "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "6e9bdd2021503689a2ad9254c9cdf2b3", "key": "cvss"}, {"hash": "213255f50aa1bd88d65226611186ba9b", "key": "href"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "067e655f5b97c56f5e7554c4ec8af41b", "key": "description"}, {"hash": "ce1c674ef80eb674334424c8d7ac6f10", "key": "published"}, {"hash": "60c7e80ef0ce1ed9b8b5d2135305c275", "key": "title"}, {"hash": "75cd83f49e423ca3f79797049b1acdce", "key": "cvelist"}, {"hash": "d9567467c180a0eb051a81c1bc2c24b4", "key": "cpe"}, {"hash": "fa7e1e0207480aa760c8eb57b2003a33", "key": "modified"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "eb9848e527d25441380009e2e50475b5", "key": "references"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}], "lastseen": "2016-09-03T20:07:53", "assessment": {"name": "", "href": "", "system": ""}}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T20:07:53"}], "scanner": [], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "modified": "2017-08-28T21:34:27", "hash": "7dc3b9a7f20cd2bf451070f004407211a916bdbcd39eac6e859cf4e7134e2cd2", "enchantments": {"score": {"vector": "NONE", "value": 4.3}, "vulnersScore": 4.3}, "edition": 2, "description": "Multiple cross-site scripting (XSS) vulnerabilities in ZeroClipboard.swf in ZeroClipboard before 1.3.2, as maintained by Jon Rohan and James M. Greene, allow remote attackers to inject arbitrary web script or HTML via vectors related to certain SWF query parameters (aka loaderInfo.parameters).", "references": ["https://github.com/zeroclipboard/zeroclipboard/releases/tag/v1.3.2", "https://access.redhat.com/errata/RHSA-2016:0070", "http://www.securityfocus.com/bid/65484", "https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01", "https://github.com/zeroclipboard/zeroclipboard/pull/335", "https://github.com/zeroclipboard/zeroclipboard/commit/2f9eb9750a433965572d047e24b0fc78fd1415ca", "https://exchange.xforce.ibmcloud.com/vulnerabilities/91085"], "id": "CVE-2014-1869", "lastseen": "2017-08-29T10:48:11", "assessment": {"name": "", "href": "", "system": ""}}

{"nessus": [{"lastseen": "2018-09-01T23:43:05", "references": ["https://www.tenable.com/security/research/tra-2016-23", "http://www.nessus.org/u?2e42f900", "http://www.nessus.org/u?1236c16f"], "pluginID": "78017", "description": "Jenkins Security Advisory :\n\nPlease reference CVE/URL list for details", "edition": 6, "reporter": "Tenable", "published": "2014-10-02T00:00:00", "title": "FreeBSD : jenkins -- remote execution, privilege escalation, XSS, password exposure, ACL hole, DoS (549a2771-49cc-11e4-ae2c-c80aa9043978)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2014-3666", "CVE-2014-3680", "CVE-2014-3667", "CVE-2014-1869", "CVE-2014-3661", "CVE-2014-3678", "CVE-2014-3681", "CVE-2014-3679", "CVE-2013-2186", "CVE-2014-3663", "CVE-2014-3664", "CVE-2014-3662"], "modified": "2017-10-02T00:00:00", "cpe": ["cpe:/o:freebsd:freebsd", "p-cpe:/a:freebsd:freebsd:jenkins", "p-cpe:/a:freebsd:freebsd:jenkins-lts"], "id": "FREEBSD_PKG_549A277149CC11E4AE2CC80AA9043978.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=78017", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2017 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\nif (NASL_LEVEL < 3000) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78017);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2017/10/02 21:12:25 $\");\n\n script_cve_id(\"CVE-2013-2186\", \"CVE-2014-1869\", \"CVE-2014-3661\", \"CVE-2014-3662\", \"CVE-2014-3663\", \"CVE-2014-3664\", \"CVE-2014-3666\", \"CVE-2014-3667\", \"CVE-2014-3678\", \"CVE-2014-3679\", \"CVE-2014-3680\", \"CVE-2014-3681\");\n script_xref(name:\"TRA\", value:\"TRA-2016-23\");\n\n script_name(english:\"FreeBSD : jenkins -- remote execution, privilege escalation, XSS, password exposure, ACL hole, DoS (549a2771-49cc-11e4-ae2c-c80aa9043978)\");\n script_summary(english:\"Checks for updated packages in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote FreeBSD host is missing one or more security-related\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Jenkins Security Advisory :\n\nPlease reference CVE/URL list for details\"\n );\n # https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?1236c16f\"\n );\n # http://www.freebsd.org/ports/portaudit/549a2771-49cc-11e4-ae2c-c80aa9043978.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?2e42f900\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.tenable.com/security/research/tra-2016-23\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:jenkins\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:jenkins-lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/10/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/02\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2017 Tenable Network Security, Inc.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"jenkins<1.583\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"jenkins-lts<1.565.3\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:pkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:36:58", "references": ["http://www.nessus.org/u?8f0783e9", "http://www.nessus.org/u?1236c16f"], "pluginID": "78859", "description": "The remote web server hosts a version of Jenkins (open source) or CloudBees Jenkins Enterprise that is affected by multiple vulnerabilities :\n\n - An error exists related to file upload processing that allows a remote attacker to overwrite arbitrary files.\n (CVE-2013-2186)\n\n - An input validation error exists related to the included 'ZeroClipboard' component that allows cross-site scripting attacks. (CVE-2014-1869)\n\n - An error exists related to 'CLI handshake' handling that allows denial of service attacks. (CVE-2014-3661)\n\n - An error exists related to handling login attempts using non-existent or incorrect account names that allows a remote attacker to enumerate application user names.\n (CVE-2014-3662)\n\n - An error exists related to handling users having 'Job/CONFIGURE' permissions that allows such users to perform actions meant only for 'Job/CREATE' permissions.\n (CVE-2014-3663)\n\n - An error exists related to handling users having 'Overall/READ' permissions that allows directory traversal attacks. (CVE-2014-3664)\n\n - An error exists related to the 'CLI channel' that allows arbitrary code execution by a remote attacker on the Jenkins master. (CVE-2014-3666)\n\n - An error exists related to handling users having 'Overall/READ' permissions that allows plugin source code to be disclosed. (CVE-2014-3667)\n\n - An input validation error exists related to the 'Monitoring' plugin that allows cross-site scripting attacks. (CVE-2014-3678)\n\n - An error exists related to the 'Monitoring' plugin that allows unauthorized access to sensitive information.\n (CVE-2014-3679)\n\n - An error exists related to handling users having 'Job/READ' permissions that allows such users to obtain default passwords belonging to parameterized jobs. (CVE-2014-3680)\n\n - An unspecified input validation error allows cross-site scripting attacks. (CVE-2014-3681)", "edition": 6, "reporter": "Tenable", "published": "2014-11-04T00:00:00", "title": "Jenkins < 1.583 / 1.565.3 and Jenkins Enterprise 1.532.x / 1.554.x / 1.565.x < 1.532.10.1 / 1.554.10.1 / 1.565.3.1 Multiple Vulnerabilities", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "CGI abuses", "bulletinFamily": "scanner", "cvelist": ["CVE-2014-3666", "CVE-2014-3680", "CVE-2014-3667", "CVE-2014-1869", "CVE-2014-3661", "CVE-2014-3678", "CVE-2014-3681", "CVE-2014-3679", "CVE-2013-2186", "CVE-2014-3663", "CVE-2014-3664", "CVE-2014-3662"], "modified": "2018-06-13T00:00:00", "cpe": ["cpe:/a:cloudbees:jenkins", "cpe:/a:jenkins-ci:monitoring_plugin"], "id": "JENKINS_1_583.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=78859", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78859);\n script_version(\"1.4\");\n script_cvs_date(\"Date: 2018/06/13 18:56:27\");\n\n script_cve_id(\n \"CVE-2013-2186\",\n \"CVE-2014-1869\",\n \"CVE-2014-3661\",\n \"CVE-2014-3662\",\n \"CVE-2014-3663\",\n \"CVE-2014-3664\",\n \"CVE-2014-3666\",\n \"CVE-2014-3667\",\n \"CVE-2014-3678\",\n \"CVE-2014-3679\",\n \"CVE-2014-3680\",\n \"CVE-2014-3681\"\n );\n script_bugtraq_id(63174, 65484);\n\n script_name(english:\"Jenkins < 1.583 / 1.565.3 and Jenkins Enterprise 1.532.x / 1.554.x / 1.565.x < 1.532.10.1 / 1.554.10.1 / 1.565.3.1 Multiple Vulnerabilities\");\n script_summary(english:\"Checks the Jenkins version.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote web server hosts a job scheduling and management system\nthat is affected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote web server hosts a version of Jenkins (open source) or\nCloudBees Jenkins Enterprise that is affected by multiple\nvulnerabilities :\n\n - An error exists related to file upload processing that\n allows a remote attacker to overwrite arbitrary files.\n (CVE-2013-2186)\n\n - An input validation error exists related to the included\n 'ZeroClipboard' component that allows cross-site\n scripting attacks. (CVE-2014-1869)\n\n - An error exists related to 'CLI handshake' handling that\n allows denial of service attacks. (CVE-2014-3661)\n\n - An error exists related to handling login attempts using\n non-existent or incorrect account names that allows a\n remote attacker to enumerate application user names.\n (CVE-2014-3662)\n\n - An error exists related to handling users having\n 'Job/CONFIGURE' permissions that allows such users to\n perform actions meant only for 'Job/CREATE' permissions.\n (CVE-2014-3663)\n\n - An error exists related to handling users having\n 'Overall/READ' permissions that allows directory\n traversal attacks. (CVE-2014-3664)\n\n - An error exists related to the 'CLI channel' that allows\n arbitrary code execution by a remote attacker on the\n Jenkins master. (CVE-2014-3666)\n\n - An error exists related to handling users having\n 'Overall/READ' permissions that allows plugin source\n code to be disclosed. (CVE-2014-3667)\n\n - An input validation error exists related to the\n 'Monitoring' plugin that allows cross-site scripting\n attacks. (CVE-2014-3678)\n\n - An error exists related to the 'Monitoring' plugin that\n allows unauthorized access to sensitive information.\n (CVE-2014-3679)\n\n - An error exists related to handling users having\n 'Job/READ' permissions that allows such users to\n obtain default passwords belonging to parameterized\n jobs. (CVE-2014-3680)\n\n - An unspecified input validation error allows cross-site\n scripting attacks. (CVE-2014-3681)\");\n # https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?1236c16f\");\n # https://www.cloudbees.com/jenkins-security-advisory-2014-10-01\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?8f0783e9\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Jenkins 1.583 / 1.565.3 or Jenkins Enterprise 1.532.10.1 /\n1.554.10.1 / 1.565.3.1 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n script_cwe_id(20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990);\n # CVE-2013-2186\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/09/26\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/09/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/11/04\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:cloudbees:jenkins\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:jenkins-ci:monitoring_plugin\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CGI abuses\");\n\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"jenkins_detect.nasl\");\n script_require_ports(\"Services/www\", 8080);\n script_require_keys(\"www/Jenkins\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"http.inc\");\n\nport = get_http_port(default:8080);\n\nget_kb_item_or_exit(\"www/Jenkins/\"+port+\"/Installed\");\n\n# Check if install is Enterprise\nenterprise_installed = get_kb_item(\"www/Jenkins/\"+port+\"/enterprise/Installed\");\nif (!isnull(enterprise_installed)) appname = \"Jenkins Enterprise by CloudBees\";\nelse appname = \"Jenkins Open Source\";\n\nurl = build_url(qs:'/', port:port);\n\nversion = get_kb_item_or_exit(\"www/Jenkins/\"+port+\"/JenkinsVersion\");\nif (version == \"unknown\") audit(AUDIT_UNKNOWN_WEB_APP_VER, appname, url);\n\nif (report_paranoia < 2 && isnull(enterprise_installed)) audit(AUDIT_PARANOID);\n\nver = split(version, sep:'.', keep:FALSE);\nfor (i=0; i<max_index(ver); i++)\n ver[i] = int(ver[i]);\nif (max_index(ver) < 2) audit(AUDIT_VER_NOT_GRANULAR, appname, port, version);\n\nif (\n report_paranoia > 1 && isnull(enterprise_installed) &&\n (\n ver_compare(ver:version, fix:'1.565.3', strict:FALSE) < 0 || # LTS version\n (\n ver[0] == 1 && ver[1] > 565 && ver[1] < 583 && # flag vulnerable major version releases,\n max_index(ver) < 3 # but not future LTS releases\n )\n )\n)\n{\n vuln = TRUE;\n fixed = \"1.583 / 1.565.3\";\n}\n\n# Check Enterprise ranges\n# 1.565.1.1 up to 1.565.2.x\n# 1.554.1.1 up to 1.554.9.x\n# 1.532.1.1 up to 1.532.9.x\nif (\n enterprise_installed &&\n (\n # All previous\n (ver[0] < 1 || (ver[0] == 1 && ver[1] < 509))\n ||\n # 1.565.1.1 up to 1.565.2.x\n (ver[0] == 1 && ver[1] == 565 && ((ver[2] == 1 && ver[3] >= 1) || (ver[2] == 2)))\n ||\n # 1.554.1.1 up to 1.554.9.x\n (ver[0] == 1 && ver[1] == 554 && ((ver[2] < 1 && ver[3] >= 1) || (ver[2] >= 2 && ver[2] <= 9)))\n ||\n # 1.532.1.1 up to 1.532.9.x\n (ver[0] == 1 && ver[1] == 532 && ((ver[2] < 1 && ver[3] >= 1) || (ver[2] >= 2 && ver[2] <= 9)))\n )\n)\n{\n vuln = TRUE;\n fixed = \"1.532.10.1 / 1.554.10.1 / 1.565.3.1\";\n}\n\nif (vuln)\n{\n set_kb_item(name:\"www/\"+port+\"/XSS\", value:TRUE);\n\n if (report_verbosity > 0)\n {\n report =\n '\\n URL : ' + url +\n '\\n Product : ' + appname +\n '\\n Installed version : ' + version +\n '\\n Fixed version : ' + fixed +\n '\\n';\n\n security_hole(port:port, extra:report);\n }\n else security_hole(port);\n exit(0);\n}\nelse audit(AUDIT_WEB_APP_NOT_AFFECTED, appname, url, version);\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "archlinux": [{"lastseen": "2016-09-02T18:44:35", "references": ["https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3678", "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3663", "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-1869", "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3681", "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3664", "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3666", "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3679", "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2186", "https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01", "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3662", "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3680", "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3661", "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3667"], "affectedPackage": [{"OS": "any", "OSVersion": "any", "packageVersion": "1.583-1", "packageName": "jenkins", "arch": "any", "packageFilename": "UNKNOWN", "operator": "lt"}], "edition": 1, "description": "- SECURITY-87/CVE-2014-3661 (anonymous DoS attack through CLI handshake)\nThis vulnerability allows unauthenticated users with access to Jenkins'\nHTTP/HTTPS port to mount a DoS attack on Jenkins through thread exhaustion.\n\n- SECURITY-110/CVE-2014-3662 (User name discovery)\nAnonymous users can test if the user of a specific name exists or not\nthrough login attempts.\n\n- SECURITY-127&amp;128/CVE-2014-3663 (privilege escalation in job\nconfiguration permission)\nAn user with a permission limited to Job/CONFIGURE can exploit this\nvulnerability to effectively create a new job, which should have been\nonly possible for users with Job/CREATE permission, or to destroy jobs\nthat he/she does not have access otherwise.\n\n- SECURITY-131/CVE-2014-3664 (directory traversal attack)\nUsers with Overall/READ permission can access arbitrary files in the\nfile system readable by the Jenkins process, resulting in the exposure\nof sensitive information, such as encryption keys.\n\n- SECURITY-138/CVE-2014-3680 (Password exposure in DOM)\nIf a parameterized job has a default value in a password field, that\ndefault value gets exposed to users with Job/READ permission.\n\n- SECURITY-143/CVE-2014-3681 (XSS vulnerability in Jenkins core)\nReflected cross-site scripting vulnerability in Jenkins core. An\nattacker can navigate the user to a carefully crafted URL and have the\nuser execute unintended actions.\n\n- SECURITY-150/CVE-2014-3666 (remote code execution from CLI)\nUnauthenticated user can execute arbitrary code on Jenkins master by\nsending carefully crafted packets over the CLI channel.\n\n- SECURITY-155/CVE-2014-3667 (exposure of plugin code)\nPrograms that constitute plugins can be downloaded by anyone with the\nOverall/READ permission, resulting in the exposure of otherwise\nsensitive information, such as hard-coded keys in plugins, if any.\n\n- SECURITY-159/CVE-2013-2186 (arbitrary file system write)\nSecurity vulnerability in commons fileupload allows unauthenticated\nattacker to upload arbitrary files to Jenkins master.\n\n- SECURITY-149/CVE-2014-1869 (XSS vulnerabilities in ZeroClipboard)\nreflective XSS vulnerability in one of the library dependencies of Jenkins.\n\n- SECURITY-113/CVE-2014-3678 (XSS vulnerabilities in monitoring plugin)\nMonitoring plugin allows an attacker to cause a victim into executing\nunwanted actions on Jenkins instance.\n\n- SECURITY-113/CVE-2014-3679 (hole in access control)\nCertain pages in monitoring plugin are visible to anonymous users,\nallowing them to gain information that they are not supposed to.", "reporter": "Arch Linux", "published": "2014-10-02T00:00:00", "title": "jenkins: multiple issues", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "type": "archlinux", "bulletinFamily": "unix", "cvelist": ["CVE-2014-3666", "CVE-2014-3680", "CVE-2014-3667", "CVE-2014-1869", "CVE-2014-3661", "CVE-2014-3678", "CVE-2014-3681", "CVE-2014-3679", "CVE-2013-2186", "CVE-2014-3663", "CVE-2014-3664", "CVE-2014-3662"], "modified": "2014-10-02T00:00:00", "href": "https://lists.archlinux.org/pipermail/arch-security/2014-October/000113.html", "id": "ASA-201410-2", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "freebsd": [{"lastseen": "2018-08-31T01:14:47", "references": ["https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "1.565.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "jenkins-lts", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "1.583", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "jenkins", "operator": "lt"}], "description": "\nJenkins Security Advisory:\n\nPlease reference CVE/URL list for details\n\n", "edition": 5, "reporter": "FreeBSD", "published": "2014-10-01T00:00:00", "title": "jenkins -- remote execution, privilege escalation, XSS, password exposure, ACL hole, DoS", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2014-3666", "CVE-2014-3680", "CVE-2014-3667", "CVE-2014-1869", "CVE-2014-3661", "CVE-2014-3678", "CVE-2014-3681", "CVE-2014-3679", "CVE-2013-2186", "CVE-2014-3663", "CVE-2014-3664", "CVE-2014-3662"], "modified": "2014-10-01T00:00:00", "id": "549A2771-49CC-11E4-AE2C-C80AA9043978", "href": "https://vuxml.freebsd.org/freebsd/549a2771-49cc-11e4-ae2c-c80aa9043978.html", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "redhat": [{"lastseen": "2016-09-04T11:17:42", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-readdirp-2.0.0-2.el7aos.noarch.rpm", "packageName": "nodejs-readdirp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.5.0-1.el7aos", "arch": "src", "packageFilename": "origin-kibana-0.5.0-1.el7aos.src.rpm", "packageName": "origin-kibana", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.4-1.el7aos", "arch": "src", "packageFilename": "nodejs-for-in-0.1.4-1.el7aos.src.rpm", "packageName": "nodejs-for-in", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.8.1-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-nodemon-1.8.1-2.el7aos.noarch.rpm", "packageName": "nodejs-nodemon", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.3.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-extglob-0.3.1-1.el7aos.src.rpm", "packageName": "nodejs-extglob", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.2.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-lodash.baseassign-3.2.0-1.el7aos.noarch.rpm", "packageName": "nodejs-lodash.baseassign", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.1.6-1.git.0.b57e8bd.el7aos", "arch": "src", "packageFilename": "atomic-openshift-3.1.1.6-1.git.0.b57e8bd.el7aos.src.rpm", "packageName": "atomic-openshift", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-is-primitive-2.0.0-1.el7aos.src.rpm", "packageName": "nodejs-is-primitive", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.2-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-is-dotfile-1.0.2-1.el7aos.noarch.rpm", "packageName": "nodejs-is-dotfile", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-async-each-1.0.0-1.el7aos.src.rpm", "packageName": "nodejs-async-each", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.2.0-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-parse-json-2.2.0-2.el7aos.noarch.rpm", "packageName": "nodejs-parse-json", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.1.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-semver-diff-2.1.0-1.el7aos.noarch.rpm", "packageName": "nodejs-semver-diff", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-object.omit-2.0.0-1.el7aos.src.rpm", "packageName": "nodejs-object.omit", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.2.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-lodash.assign-3.2.0-1.el7aos.src.rpm", "packageName": "nodejs-lodash.assign", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-ansi-wrap-0.1.0-1.el7aos.src.rpm", "packageName": "nodejs-ansi-wrap", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-filename-regex-2.0.0-1.el7aos.src.rpm", "packageName": "nodejs-filename-regex", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.2.1-2.el7aos", "arch": "src", "packageFilename": "nodejs-stream-combiner-0.2.1-2.el7aos.src.rpm", "packageName": "nodejs-stream-combiner", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-pinkie-2.0.1-1.el7aos.noarch.rpm", "packageName": "nodejs-pinkie", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.6.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-update-notifier-0.6.0-1.el7aos.src.rpm", "packageName": "nodejs-update-notifier", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.2-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-rc-1.1.2-1.el7aos.noarch.rpm", "packageName": "nodejs-rc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-pinkie-promise-2.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-pinkie-promise", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-is-redirect-1.0.0-1.el7aos.src.rpm", "packageName": "nodejs-is-redirect", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-is-npm-1.0.0-1.el7aos.src.rpm", "packageName": "nodejs-is-npm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.35-1.git.0.6a386dd.el7aos", "arch": "noarch", "packageFilename": "openshift-ansible-3.0.35-1.git.0.6a386dd.el7aos.noarch.rpm", "packageName": "openshift-ansible", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-filename-regex-2.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-filename-regex", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-lodash.bindcallback-3.0.1-1.el7aos.src.rpm", "packageName": "nodejs-lodash.bindcallback", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.2-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-lodash.keys-3.1.2-1.el7aos.noarch.rpm", "packageName": "nodejs-lodash.keys", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.625.3-2.el7aos", "arch": "src", "packageFilename": "jenkins-1.625.3-2.el7aos.src.rpm", "packageName": "jenkins", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.2.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-array-unique-0.2.1-1.el7aos.noarch.rpm", "packageName": "nodejs-array-unique", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.1.6-1.git.0.b57e8bd.el7aos", "arch": "x86_64", "packageFilename": "atomic-openshift-dockerregistry-3.1.1.6-1.git.0.b57e8bd.el7aos.x86_64.rpm", "packageName": "atomic-openshift-dockerregistry", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-success-symbol-0.1.0-1.el7aos.noarch.rpm", "packageName": "nodejs-success-symbol", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.3-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-registry-url-3.0.3-1.el7aos.noarch.rpm", "packageName": "nodejs-registry-url", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.4-1.el7aos", "arch": "src", "packageFilename": "nodejs-lodash.isarguments-3.0.4-1.el7aos.src.rpm", "packageName": "nodejs-lodash.isarguments", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.2-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-kind-of-3.0.2-1.el7aos.noarch.rpm", "packageName": "nodejs-kind-of", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.1-3.el7aos", "arch": "src", "packageFilename": "nodejs-read-all-stream-3.0.1-3.el7aos.src.rpm", "packageName": "nodejs-read-all-stream", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.4.2-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-duplexify-3.4.2-1.el7aos.noarch.rpm", "packageName": "nodejs-duplexify", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.2-1.el7aos", "arch": "src", "packageFilename": "nodejs-repeat-element-1.1.2-1.el7aos.src.rpm", "packageName": "nodejs-repeat-element", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-2.el7aos", "arch": "src", "packageFilename": "nodejs-prepend-http-1.0.1-2.el7aos.src.rpm", "packageName": "nodejs-prepend-http", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.2.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-lodash.baseassign-3.2.0-1.el7aos.src.rpm", "packageName": "nodejs-lodash.baseassign", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-is-binary-path-1.0.1-1.el7aos.noarch.rpm", "packageName": "nodejs-is-binary-path", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.1.6-1.git.0.b57e8bd.el7aos", "arch": "x86_64", "packageFilename": "atomic-openshift-pod-3.1.1.6-1.git.0.b57e8bd.el7aos.x86_64.rpm", "packageName": "atomic-openshift-pod", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.3.2-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-deep-extend-0.3.2-2.el7aos.noarch.rpm", "packageName": "nodejs-deep-extend", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.1.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-semver-diff-2.1.0-1.el7aos.src.rpm", "packageName": "nodejs-semver-diff", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.35-1.git.0.6a386dd.el7aos", "arch": "src", "packageFilename": "openshift-ansible-3.0.35-1.git.0.6a386dd.el7aos.src.rpm", "packageName": "openshift-ansible", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.3.4-4.el7aos", "arch": "noarch", "packageFilename": "nodejs-through-2.3.4-4.el7aos.noarch.rpm", "packageName": "nodejs-through", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-arr-flatten-1.0.1-1.el7aos.noarch.rpm", "packageName": "nodejs-arr-flatten", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-is-redirect-1.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-is-redirect", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.2-1.el7aos", "arch": "src", "packageFilename": "nodejs-rc-1.1.2-1.el7aos.src.rpm", "packageName": "nodejs-rc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.0-2.el7aos", "arch": "src", "packageFilename": "nodejs-end-of-stream-1.1.0-2.el7aos.src.rpm", "packageName": "nodejs-end-of-stream", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.0-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-osenv-0.1.0-2.el7aos.noarch.rpm", "packageName": "nodejs-osenv", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.4.2-1.el7aos", "arch": "src", "packageFilename": "nodejs-regex-cache-0.4.2-1.el7aos.src.rpm", "packageName": "nodejs-regex-cache", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-isobject-2.0.0-1.el7aos.src.rpm", "packageName": "nodejs-isobject", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.6.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-lodash.restparam-3.6.1-1.el7aos.noarch.rpm", "packageName": "nodejs-lodash.restparam", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.1-2.el7aos", "arch": "src", "packageFilename": "nodejs-duplexer-0.1.1-2.el7aos.src.rpm", "packageName": "nodejs-duplexer", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.1.6-1.git.0.b57e8bd.el7aos", "arch": "x86_64", "packageFilename": "atomic-openshift-3.1.1.6-1.git.0.b57e8bd.el7aos.x86_64.rpm", "packageName": "atomic-openshift", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-lodash.bindcallback-3.0.1-1.el7aos.noarch.rpm", "packageName": "nodejs-lodash.bindcallback", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-xdg-basedir-2.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-xdg-basedir", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.3-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-is-equal-shallow-0.1.3-1.el7aos.noarch.rpm", "packageName": "nodejs-is-equal-shallow", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.3-2.el7aos", "arch": "src", "packageFilename": "nodejs-from-0.1.3-2.el7aos.src.rpm", "packageName": "nodejs-from", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.9-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-lodash.isiterateecall-3.0.9-1.el7aos.noarch.rpm", "packageName": "nodejs-lodash.isiterateecall", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.4-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-lodash.isarguments-3.0.4-1.el7aos.noarch.rpm", "packageName": "nodejs-lodash.isarguments", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-lodash.createassigner-3.1.1-1.el7aos.noarch.rpm", "packageName": "nodejs-lodash.createassigner", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.5.0-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-mkdirp-0.5.0-2.el7aos.noarch.rpm", "packageName": "nodejs-mkdirp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.4.0-1.el7", "arch": "x86_64", "packageFilename": "openvswitch-2.4.0-1.el7.x86_64.rpm", "packageName": "openvswitch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-is-extglob-1.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-is-extglob", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-arr-diff-2.0.0-1.el7aos.src.rpm", "packageName": "nodejs-arr-diff", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.18.2-3.gitaf4752e.el7aos", "arch": "src", "packageFilename": "heapster-0.18.2-3.gitaf4752e.el7aos.src.rpm", "packageName": "heapster", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-arr-flatten-1.0.1-1.el7aos.src.rpm", "packageName": "nodejs-arr-flatten", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.9.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-lodash.getnative-3.9.1-1.el7aos.noarch.rpm", "packageName": "nodejs-lodash.getnative", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.2.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-lodash.assign-3.2.0-1.el7aos.noarch.rpm", "packageName": "nodejs-lodash.assign", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.3-1.el7aos", "arch": "src", "packageFilename": "nodejs-registry-url-3.0.3-1.el7aos.src.rpm", "packageName": "nodejs-registry-url", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.4-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-parse-glob-3.0.4-1.el7aos.noarch.rpm", "packageName": "nodejs-parse-glob", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.3.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-anymatch-1.3.0-1.el7aos.src.rpm", "packageName": "nodejs-anymatch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-normalize-path-2.0.1-1.el7aos.noarch.rpm", "packageName": "nodejs-normalize-path", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-pinkie-promise-2.0.0-1.el7aos.src.rpm", "packageName": "nodejs-pinkie-promise", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.4.0-1.el7", "arch": "x86_64", "packageFilename": "openvswitch-devel-2.4.0-1.el7.x86_64.rpm", "packageName": "openvswitch-devel", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-uuid-2.0.1-1.el7aos.noarch.rpm", "packageName": "nodejs-uuid", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.4.0-1.el7", "arch": "x86_64", "packageFilename": "openvswitch-debuginfo-2.4.0-1.el7.x86_64.rpm", "packageName": "openvswitch-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-3.el7aos", "arch": "src", "packageFilename": "nodejs-timed-out-2.0.0-3.el7aos.src.rpm", "packageName": "nodejs-timed-out", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-arr-diff-2.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-arr-diff", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-arrify-1.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-arrify", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.3-1.el7aos", "arch": "src", "packageFilename": "nodejs-for-own-0.1.3-1.el7aos.src.rpm", "packageName": "nodejs-for-own", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.1.6-1.git.0.b57e8bd.el7aos", "arch": "x86_64", "packageFilename": "atomic-openshift-node-3.1.1.6-1.git.0.b57e8bd.el7aos.x86_64.rpm", "packageName": "atomic-openshift-node", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.3.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-glob-base-0.3.0-1.el7aos.noarch.rpm", "packageName": "nodejs-glob-base", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.0-6.el7aos", "arch": "noarch", "packageFilename": "nodejs-ini-1.1.0-6.el7aos.noarch.rpm", "packageName": "nodejs-ini", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.3-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-from-0.1.3-2.el7aos.noarch.rpm", "packageName": "nodejs-from", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-ansi-wrap-0.1.0-1.el7aos.noarch.rpm", "packageName": "nodejs-ansi-wrap", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.0-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-map-stream-0.1.0-2.el7aos.noarch.rpm", "packageName": "nodejs-map-stream", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.4-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-lodash.isarray-3.0.4-1.el7aos.noarch.rpm", "packageName": "nodejs-lodash.isarray", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-os-homedir-1.0.1-1.el7aos.noarch.rpm", "packageName": "nodejs-os-homedir", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.35-1.git.0.6a386dd.el7aos", "arch": "noarch", "packageFilename": "openshift-ansible-lookup-plugins-3.0.35-1.git.0.6a386dd.el7aos.noarch.rpm", "packageName": "openshift-ansible-lookup-plugins", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.2-1.el7aos", "arch": "src", "packageFilename": "nodejs-is-dotfile-1.0.2-1.el7aos.src.rpm", "packageName": "nodejs-is-dotfile", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-lodash.basecopy-3.0.1-1.el7aos.noarch.rpm", "packageName": "nodejs-lodash.basecopy", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-glob-parent-2.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-glob-parent", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.2-1.el7aos", "arch": "src", "packageFilename": "nodejs-lodash.defaults-3.1.2-1.el7aos.src.rpm", "packageName": "nodejs-lodash.defaults", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-is-extglob-1.0.0-1.el7aos.src.rpm", "packageName": "nodejs-is-extglob", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.4-1.el7aos", "arch": "src", "packageFilename": "nodejs-lodash.isarray-3.0.4-1.el7aos.src.rpm", "packageName": "nodejs-lodash.isarray", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-prepend-http-1.0.1-2.el7aos.noarch.rpm", "packageName": "nodejs-prepend-http", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.2-1.el7aos", "arch": "src", "packageFilename": "nodejs-kind-of-3.0.2-1.el7aos.src.rpm", "packageName": "nodejs-kind-of", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-latest-version-2.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-latest-version", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.9-1.el7aos", "arch": "src", "packageFilename": "nodejs-lodash.isiterateecall-3.0.9-1.el7aos.src.rpm", "packageName": "nodejs-lodash.isiterateecall", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-normalize-path-2.0.1-1.el7aos.src.rpm", "packageName": "nodejs-normalize-path", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.3.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-anymatch-1.3.0-1.el7aos.noarch.rpm", "packageName": "nodejs-anymatch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-2.el7aos", "arch": "src", "packageFilename": "nodejs-lowercase-keys-1.0.0-2.el7aos.src.rpm", "packageName": "nodejs-lowercase-keys", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.0-6.el7aos", "arch": "src", "packageFilename": "nodejs-ini-1.1.0-6.el7aos.src.rpm", "packageName": "nodejs-ini", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-lowercase-keys-1.0.0-2.el7aos.noarch.rpm", "packageName": "nodejs-lowercase-keys", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.1.2-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-graceful-fs-4.1.2-1.el7aos.noarch.rpm", "packageName": "nodejs-graceful-fs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-is-plain-obj-1.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-is-plain-obj", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.2-1.el7aos", "arch": "src", "packageFilename": "nodejs-lazy-cache-1.0.2-1.el7aos.src.rpm", "packageName": "nodejs-lazy-cache", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.3.3-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-split-0.3.3-2.el7aos.noarch.rpm", "packageName": "nodejs-split", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-ansi-green-0.1.1-1.el7aos.noarch.rpm", "packageName": "nodejs-ansi-green", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-async-each-1.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-async-each", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-url-parse-lax-1.0.0-1.el7aos.src.rpm", "packageName": "nodejs-url-parse-lax", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-os-tmpdir-1.0.1-1.el7aos.noarch.rpm", "packageName": "nodejs-os-tmpdir", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.2.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-preserve-0.2.0-1.el7aos.noarch.rpm", "packageName": "nodejs-preserve", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.2-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-repeat-element-1.1.2-1.el7aos.noarch.rpm", "packageName": "nodejs-repeat-element", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.35-1.git.0.6a386dd.el7aos", "arch": "noarch", "packageFilename": "openshift-ansible-playbooks-3.0.35-1.git.0.6a386dd.el7aos.noarch.rpm", "packageName": "openshift-ansible-playbooks", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-2.el7aos", "arch": "src", "packageFilename": "nodejs-touch-1.0.0-2.el7aos.src.rpm", "packageName": "nodejs-touch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.0.11-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-pause-stream-0.0.11-2.el7aos.noarch.rpm", "packageName": "nodejs-pause-stream", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.3.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-binary-extensions-1.3.1-1.el7aos.noarch.rpm", "packageName": "nodejs-binary-extensions", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.4-1.el7aos", "arch": "src", "packageFilename": "nodejs-expand-brackets-0.1.4-1.el7aos.src.rpm", "packageName": "nodejs-expand-brackets", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-ps-tree-1.0.1-1.el7aos.noarch.rpm", "packageName": "nodejs-ps-tree", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.1-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-duplexer-0.1.1-2.el7aos.noarch.rpm", "packageName": "nodejs-duplexer", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.3.2-1.el7aos", "arch": "src", "packageFilename": "nodejs-event-stream-3.3.2-1.el7aos.src.rpm", "packageName": "nodejs-event-stream", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.2.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-array-unique-0.2.1-1.el7aos.src.rpm", "packageName": "nodejs-array-unique", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.4.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-configstore-1.4.0-1.el7aos.src.rpm", "packageName": "nodejs-configstore", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.5-3.el7aos", "arch": "src", "packageFilename": "nodejs-slide-1.1.5-3.el7aos.src.rpm", "packageName": "nodejs-slide", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-is-extendable-0.1.1-1.el7aos.src.rpm", "packageName": "nodejs-is-extendable", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-url-parse-lax-1.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-url-parse-lax", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-unzip-response-1.0.0-1.el7aos.src.rpm", "packageName": "nodejs-unzip-response", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.4.1-2.el7aos", "arch": "src", "packageFilename": "nodejs-chokidar-1.4.1-2.el7aos.src.rpm", "packageName": "nodejs-chokidar", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.3.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-package-json-2.3.0-1.el7aos.noarch.rpm", "packageName": "nodejs-package-json", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.3.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-glob-base-0.3.0-1.el7aos.src.rpm", "packageName": "nodejs-glob-base", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-pinkie-2.0.1-1.el7aos.src.rpm", "packageName": "nodejs-pinkie", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-2.el7aos", "arch": "src", "packageFilename": "nodejs-readdirp-2.0.0-2.el7aos.src.rpm", "packageName": "nodejs-readdirp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-is-extendable-0.1.1-1.el7aos.noarch.rpm", "packageName": "nodejs-is-extendable", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-is-npm-1.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-is-npm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-is-binary-path-1.0.1-1.el7aos.src.rpm", "packageName": "nodejs-is-binary-path", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.2.3-1.el7aos", "arch": "src", "packageFilename": "nodejs-fill-range-2.2.3-1.el7aos.src.rpm", "packageName": "nodejs-fill-range", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-success-symbol-0.1.0-1.el7aos.src.rpm", "packageName": "nodejs-success-symbol", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.0.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-object-assign-4.0.1-1.el7aos.src.rpm", "packageName": "nodejs-object-assign", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.8.2-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-braces-1.8.2-2.el7aos.noarch.rpm", "packageName": "nodejs-braces", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.1-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-create-error-class-2.0.1-2.el7aos.noarch.rpm", "packageName": "nodejs-create-error-class", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.8.1-2.el7aos", "arch": "src", "packageFilename": "nodejs-nodemon-1.8.1-2.el7aos.src.rpm", "packageName": "nodejs-nodemon", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-unzip-response-1.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-unzip-response", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "5.1.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-semver-5.1.0-1.el7aos.noarch.rpm", "packageName": "nodejs-semver", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.3.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-binary-extensions-1.3.1-1.el7aos.src.rpm", "packageName": "nodejs-binary-extensions", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.4.1-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-chokidar-1.4.1-2.el7aos.noarch.rpm", "packageName": "nodejs-chokidar", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-object.omit-2.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-object.omit", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.0.11-2.el7aos", "arch": "src", "packageFilename": "nodejs-pause-stream-0.0.11-2.el7aos.src.rpm", "packageName": "nodejs-pause-stream", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.0.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-object-assign-4.0.1-1.el7aos.noarch.rpm", "packageName": "nodejs-object-assign", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.1.6-1.git.0.b57e8bd.el7aos", "arch": "x86_64", "packageFilename": "atomic-openshift-sdn-ovs-3.1.1.6-1.git.0.b57e8bd.el7aos.x86_64.rpm", "packageName": "atomic-openshift-sdn-ovs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.1.6-1.git.0.b57e8bd.el7aos", "arch": "x86_64", "packageFilename": "tuned-profiles-atomic-openshift-node-3.1.1.6-1.git.0.b57e8bd.el7aos.x86_64.rpm", "packageName": "tuned-profiles-atomic-openshift-node", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.3-1.el7aos", "arch": "src", "packageFilename": "nodejs-is-equal-shallow-0.1.3-1.el7aos.src.rpm", "packageName": "nodejs-is-equal-shallow", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.4-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-for-in-0.1.4-1.el7aos.noarch.rpm", "packageName": "nodejs-for-in", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.3.5-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-micromatch-2.3.5-2.el7aos.noarch.rpm", "packageName": "nodejs-micromatch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-node-status-codes-1.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-node-status-codes", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.3.3-2.el7aos", "arch": "src", "packageFilename": "nodejs-split-0.3.3-2.el7aos.src.rpm", "packageName": "nodejs-split", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.3.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-package-json-2.3.0-1.el7aos.src.rpm", "packageName": "nodejs-package-json", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-ansi-green-0.1.1-1.el7aos.src.rpm", "packageName": "nodejs-ansi-green", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.2.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-preserve-0.2.0-1.el7aos.src.rpm", "packageName": "nodejs-preserve", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.0-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-end-of-stream-1.1.0-2.el7aos.noarch.rpm", "packageName": "nodejs-end-of-stream", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.4.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-configstore-1.4.0-1.el7aos.noarch.rpm", "packageName": "nodejs-configstore", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.3-2.el7aos", "arch": "src", "packageFilename": "nodejs-align-text-0.1.3-2.el7aos.src.rpm", "packageName": "nodejs-align-text", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.35-1.git.0.6a386dd.el7aos", "arch": "noarch", "packageFilename": "openshift-ansible-roles-3.0.35-1.git.0.6a386dd.el7aos.noarch.rpm", "packageName": "openshift-ansible-roles", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.4.0-5.el7aos", "arch": "src", "packageFilename": "nodejs-optimist-0.4.0-5.el7aos.src.rpm", "packageName": "nodejs-optimist", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.35-1.git.0.6a386dd.el7aos", "arch": "noarch", "packageFilename": "atomic-openshift-utils-3.0.35-1.git.0.6a386dd.el7aos.noarch.rpm", "packageName": "atomic-openshift-utils", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.0-2.el7aos", "arch": "src", "packageFilename": "nodejs-osenv-0.1.0-2.el7aos.src.rpm", "packageName": "nodejs-osenv", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-xdg-basedir-2.0.0-1.el7aos.src.rpm", "packageName": "nodejs-xdg-basedir", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.2.1-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-stream-combiner-0.2.1-2.el7aos.noarch.rpm", "packageName": "nodejs-stream-combiner", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.3-1.el7", "arch": "src", "packageFilename": "nss_wrapper-1.0.3-1.el7.src.rpm", "packageName": "nss_wrapper", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.2-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-strip-json-comments-1.0.2-2.el7aos.noarch.rpm", "packageName": "nodejs-strip-json-comments", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.2.0-2.el7aos", "arch": "src", "packageFilename": "nodejs-parse-json-2.2.0-2.el7aos.src.rpm", "packageName": "nodejs-parse-json", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.4.0-1.el7", "arch": "noarch", "packageFilename": "python-openvswitch-2.4.0-1.el7.noarch.rpm", "packageName": "python-openvswitch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.625.3-2.el7aos", "arch": "noarch", "packageFilename": "jenkins-1.625.3-2.el7aos.noarch.rpm", "packageName": "jenkins", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.2-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-es6-promise-3.0.2-2.el7aos.noarch.rpm", "packageName": "nodejs-es6-promise", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.2-2.el7aos", "arch": "src", "packageFilename": "nodejs-write-file-atomic-1.1.2-2.el7aos.src.rpm", "packageName": "nodejs-write-file-atomic", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.35-1.git.0.6a386dd.el7aos", "arch": "noarch", "packageFilename": "openshift-ansible-docs-3.0.35-1.git.0.6a386dd.el7aos.noarch.rpm", "packageName": "openshift-ansible-docs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.1.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-is-number-2.1.0-1.el7aos.noarch.rpm", "packageName": "nodejs-is-number", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-node-status-codes-1.0.0-1.el7aos.src.rpm", "packageName": "nodejs-node-status-codes", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-is-plain-obj-1.0.0-1.el7aos.src.rpm", "packageName": "nodejs-is-plain-obj", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.1-3.el7aos", "arch": "noarch", "packageFilename": "nodejs-read-all-stream-3.0.1-3.el7aos.noarch.rpm", "packageName": "nodejs-read-all-stream", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-glob-parent-2.0.0-1.el7aos.src.rpm", "packageName": "nodejs-glob-parent", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.1.6-1.git.0.b57e8bd.el7aos", "arch": "x86_64", "packageFilename": "atomic-openshift-clients-redistributable-3.1.1.6-1.git.0.b57e8bd.el7aos.x86_64.rpm", "packageName": "atomic-openshift-clients-redistributable", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.4.2-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-regex-cache-0.4.2-1.el7aos.noarch.rpm", "packageName": "nodejs-regex-cache", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-lodash.createassigner-3.1.1-1.el7aos.src.rpm", "packageName": "nodejs-lodash.createassigner", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-arrify-1.0.0-1.el7aos.src.rpm", "packageName": "nodejs-arrify", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-2.el7aos", "arch": "src", "packageFilename": "nodejs-is-stream-1.0.1-2.el7aos.src.rpm", "packageName": "nodejs-is-stream", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-os-homedir-1.0.1-1.el7aos.src.rpm", "packageName": "nodejs-os-homedir", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-is-stream-1.0.1-2.el7aos.noarch.rpm", "packageName": "nodejs-is-stream", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.2.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-error-ex-1.2.0-1.el7aos.noarch.rpm", "packageName": "nodejs-error-ex", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.3-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-align-text-0.1.3-2.el7aos.noarch.rpm", "packageName": "nodejs-align-text", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.0-2.el7aos", "arch": "src", "packageFilename": "nodejs-map-stream-0.1.0-2.el7aos.src.rpm", "packageName": "nodejs-map-stream", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.3-1.el7", "arch": "x86_64", "packageFilename": "nss_wrapper-1.0.3-1.el7.x86_64.rpm", "packageName": "nss_wrapper", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.5-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-randomatic-1.1.5-1.el7aos.noarch.rpm", "packageName": "nodejs-randomatic", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.2-1.el7aos", "arch": "src", "packageFilename": "nodejs-lodash.keys-3.1.2-1.el7aos.src.rpm", "packageName": "nodejs-lodash.keys", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "5.2.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-got-5.2.1-1.el7aos.src.rpm", "packageName": "nodejs-got", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-touch-1.0.0-2.el7aos.noarch.rpm", "packageName": "nodejs-touch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.9.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-lodash.getnative-3.9.1-1.el7aos.src.rpm", "packageName": "nodejs-lodash.getnative", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.5.0-2.el7aos", "arch": "src", "packageFilename": "nodejs-mkdirp-0.5.0-2.el7aos.src.rpm", "packageName": "nodejs-mkdirp", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.0.3-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-undefsafe-0.0.3-1.el7aos.noarch.rpm", "packageName": "nodejs-undefsafe", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.6.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-update-notifier-0.6.0-1.el7aos.noarch.rpm", "packageName": "nodejs-update-notifier", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-string-length-1.0.1-1.el7aos.src.rpm", "packageName": "nodejs-string-length", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.3.4-4.el7aos", "arch": "src", "packageFilename": "nodejs-through-2.3.4-4.el7aos.src.rpm", "packageName": "nodejs-through", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.4.0-1.el7", "arch": "noarch", "packageFilename": "openvswitch-test-2.4.0-1.el7.noarch.rpm", "packageName": "openvswitch-test", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.3-1.el7", "arch": "x86_64", "packageFilename": "nss_wrapper-debuginfo-1.0.3-1.el7.x86_64.rpm", "packageName": "nss_wrapper-debuginfo", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.2-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-lodash.defaults-3.1.2-1.el7aos.noarch.rpm", "packageName": "nodejs-lodash.defaults", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.5.0-1.el7aos", "arch": "noarch", "packageFilename": "origin-kibana-0.5.0-1.el7aos.noarch.rpm", "packageName": "origin-kibana", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.2-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-lazy-cache-1.0.2-1.el7aos.noarch.rpm", "packageName": "nodejs-lazy-cache", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.3.2-2.el7aos", "arch": "src", "packageFilename": "nodejs-deep-extend-0.3.2-2.el7aos.src.rpm", "packageName": "nodejs-deep-extend", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.3.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-extglob-0.3.1-1.el7aos.noarch.rpm", "packageName": "nodejs-extglob", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "5.2.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-got-5.2.1-1.el7aos.noarch.rpm", "packageName": "nodejs-got", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-string-length-1.0.1-1.el7aos.noarch.rpm", "packageName": "nodejs-string-length", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.5-3.el7aos", "arch": "noarch", "packageFilename": "nodejs-slide-1.1.5-3.el7aos.noarch.rpm", "packageName": "nodejs-slide", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-3.el7aos", "arch": "noarch", "packageFilename": "nodejs-timed-out-2.0.0-3.el7aos.noarch.rpm", "packageName": "nodejs-timed-out", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-isobject-2.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-isobject", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.3.2-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-event-stream-3.3.2-1.el7aos.noarch.rpm", "packageName": "nodejs-event-stream", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.3-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-for-own-0.1.3-1.el7aos.noarch.rpm", "packageName": "nodejs-for-own", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-latest-version-2.0.0-1.el7aos.src.rpm", "packageName": "nodejs-latest-version", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-is-glob-2.0.1-1.el7aos.noarch.rpm", "packageName": "nodejs-is-glob", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.4.0-1.el7", "arch": "src", "packageFilename": "openvswitch-2.4.0-1.el7.src.rpm", "packageName": "openvswitch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.2-2.el7aos", "arch": "src", "packageFilename": "nodejs-strip-json-comments-1.0.2-2.el7aos.src.rpm", "packageName": "nodejs-strip-json-comments", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.1.2-1.el7aos", "arch": "src", "packageFilename": "nodejs-graceful-fs-4.1.2-1.el7aos.src.rpm", "packageName": "nodejs-graceful-fs", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.8.1-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-expand-range-1.8.1-1.el7aos.noarch.rpm", "packageName": "nodejs-expand-range", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.2.3-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-fill-range-2.2.3-1.el7aos.noarch.rpm", "packageName": "nodejs-fill-range", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.3.5-2.el7aos", "arch": "src", "packageFilename": "nodejs-micromatch-2.3.5-2.el7aos.src.rpm", "packageName": "nodejs-micromatch", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.5-1.el7aos", "arch": "src", "packageFilename": "nodejs-randomatic-1.1.5-1.el7aos.src.rpm", "packageName": "nodejs-randomatic", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.8.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-expand-range-1.8.1-1.el7aos.src.rpm", "packageName": "nodejs-expand-range", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-is-glob-2.0.1-1.el7aos.src.rpm", "packageName": "nodejs-is-glob", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-ps-tree-1.0.1-1.el7aos.src.rpm", "packageName": "nodejs-ps-tree", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.1.6-1.git.0.b57e8bd.el7aos", "arch": "x86_64", "packageFilename": "atomic-openshift-recycle-3.1.1.6-1.git.0.b57e8bd.el7aos.x86_64.rpm", "packageName": "atomic-openshift-recycle", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "5.1.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-semver-5.1.0-1.el7aos.src.rpm", "packageName": "nodejs-semver", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.1.6-1.git.0.b57e8bd.el7aos", "arch": "x86_64", "packageFilename": "atomic-openshift-master-3.1.1.6-1.git.0.b57e8bd.el7aos.x86_64.rpm", "packageName": "atomic-openshift-master", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.1.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-is-number-2.1.0-1.el7aos.src.rpm", "packageName": "nodejs-is-number", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.1.4-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-expand-brackets-0.1.4-1.el7aos.noarch.rpm", "packageName": "nodejs-expand-brackets", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.35-1.git.0.6a386dd.el7aos", "arch": "noarch", "packageFilename": "openshift-ansible-filter-plugins-3.0.35-1.git.0.6a386dd.el7aos.noarch.rpm", "packageName": "openshift-ansible-filter-plugins", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.1.2-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-write-file-atomic-1.1.2-2.el7aos.noarch.rpm", "packageName": "nodejs-write-file-atomic", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.1-2.el7aos", "arch": "src", "packageFilename": "nodejs-create-error-class-2.0.1-2.el7aos.src.rpm", "packageName": "nodejs-create-error-class", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.2-2.el7aos", "arch": "src", "packageFilename": "nodejs-es6-promise-3.0.2-2.el7aos.src.rpm", "packageName": "nodejs-es6-promise", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.2.0-1.el7aos", "arch": "src", "packageFilename": "nodejs-error-ex-1.2.0-1.el7aos.src.rpm", "packageName": "nodejs-error-ex", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.4.2-1.el7aos", "arch": "src", "packageFilename": "nodejs-duplexify-3.4.2-1.el7aos.src.rpm", "packageName": "nodejs-duplexify", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.6.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-lodash.restparam-3.6.1-1.el7aos.src.rpm", "packageName": "nodejs-lodash.restparam", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-lodash.basecopy-3.0.1-1.el7aos.src.rpm", "packageName": "nodejs-lodash.basecopy", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-os-tmpdir-1.0.1-1.el7aos.src.rpm", "packageName": "nodejs-os-tmpdir", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-2.el7aos", "arch": "noarch", "packageFilename": "nodejs-capture-stack-trace-1.0.0-2.el7aos.noarch.rpm", "packageName": "nodejs-capture-stack-trace", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.1-1.el7aos", "arch": "src", "packageFilename": "nodejs-uuid-2.0.1-1.el7aos.src.rpm", "packageName": "nodejs-uuid", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.18.2-3.gitaf4752e.el7aos", "arch": "x86_64", "packageFilename": "heapster-0.18.2-3.gitaf4752e.el7aos.x86_64.rpm", "packageName": "heapster", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.8.2-2.el7aos", "arch": "src", "packageFilename": "nodejs-braces-1.8.2-2.el7aos.src.rpm", "packageName": "nodejs-braces", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "2.0.0-1.el7aos", "arch": "noarch", "packageFilename": "nodejs-is-primitive-2.0.0-1.el7aos.noarch.rpm", "packageName": "nodejs-is-primitive", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "1.0.0-2.el7aos", "arch": "src", "packageFilename": "nodejs-capture-stack-trace-1.0.0-2.el7aos.src.rpm", "packageName": "nodejs-capture-stack-trace", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.4.0-5.el7aos", "arch": "noarch", "packageFilename": "nodejs-optimist-0.4.0-5.el7aos.noarch.rpm", "packageName": "nodejs-optimist", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.1.1.6-1.git.0.b57e8bd.el7aos", "arch": "x86_64", "packageFilename": "atomic-openshift-clients-3.1.1.6-1.git.0.b57e8bd.el7aos.x86_64.rpm", "packageName": "atomic-openshift-clients", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "3.0.4-1.el7aos", "arch": "src", "packageFilename": "nodejs-parse-glob-3.0.4-1.el7aos.src.rpm", "packageName": "nodejs-parse-glob", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "0.0.3-1.el7aos", "arch": "src", "packageFilename": "nodejs-undefsafe-0.0.3-1.el7aos.src.rpm", "packageName": "nodejs-undefsafe", "operator": "lt"}], "description": "OpenShift Enterprise by Red Hat is the company's cloud computing \nPlatform-as-a-Service (PaaS) solution designed for on-premise or \nprivate cloud deployments.\n\nThe following security issues are addressed with this release:\n\nAn authorization flaw was discovered in Kubernetes; the API server \ndid not properly check user permissions when handling certain \nrequests. An authenticated remote attacker could use this flaw to \ngain additional access to resources such as RAM and disk space. \n(CVE-2016-1905)\n\nAn authorization flaw was discovered in Kubernetes; the API server \ndid not properly check user permissions when handling certain build-\nconfiguration strategies. A remote attacker could create build \nconfigurations with strategies that violate policy. Although the \nattacker could not launch the build themselves (launch fails when \nthe policy is violated), if the build configuration files were later \nlaunched by other privileged services (such as automated triggers), \nuser privileges could be bypassed allowing attacker escalation. \n(CVE-2016-1906)\n\nAn update for Jenkins Continuous Integration Server that addresses a \nlarge number of security issues including XSS, CSRF, information \ndisclosure and code execution have been addressed as well. \n(CVE-2013-2186, CVE-2014-1869, CVE-2014-3661, CVE-2014-3662\nCVE-2014-3663, CVE-2014-3664, CVE-2014-3666, CVE-2014-3667\nCVE-2014-3680, CVE-2014-3681, CVE-2015-1806, CVE-2015-1807\nCVE-2015-1808, CVE-2015-1810, CVE-2015-1812, CVE-2015-1813\nCVE-2015-1814, CVE-2015-5317, CVE-2015-5318, CVE-2015-5319\nCVE-2015-5320, CVE-2015-5321, CVE-2015-5322, CVE-2015-5323\nCVE-2015-5324, CVE-2015-5325, CVE-2015-5326 ,CVE-2015-7537\nCVE-2015-7538, CVE-2015-7539, CVE-2015-8103)\n\nSpace precludes documenting all of the bug fixes and enhancements in \nthis advisory. See the OpenShift Enterprise 3.1 Release Notes, which \nwill be updated shortly for release 3.1.1, for details about these \nchanges:\n\nhttps://docs.openshift.com/enterprise/3.1/release_notes/ose_3_1_release_notes.html\n\nAll OpenShift Enterprise 3 users are advised to upgrade to these \nupdated packages.", "reporter": "RedHat", "published": "2016-01-27T00:01:15", "type": "redhat", "title": "(RHSA-2016:0070) Important: Red Hat OpenShift Enterprise 3.1.1 bug fix and enhancement update", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "bulletinFamily": "unix", "cvelist": ["CVE-2014-3666", "CVE-2014-3680", "CVE-2014-3667", "CVE-2015-5323", "CVE-2016-1906", "CVE-2015-1814", "CVE-2015-1806", "CVE-2015-1812", "CVE-2015-1808", "CVE-2015-7537", "CVE-2014-1869", "CVE-2014-3661", "CVE-2014-3681", "CVE-2015-7539", "CVE-2015-1810", "CVE-2015-7538", "CVE-2013-2186", "CVE-2015-5324", "CVE-2015-5319", "CVE-2015-1807", "CVE-2014-3663", "CVE-2015-5322", "CVE-2015-5317", "CVE-2015-5321", "CVE-2015-5320", "CVE-2015-5318", "CVE-2015-5326", "CVE-2016-1905", "CVE-2015-1813", "CVE-2015-5325", "CVE-2014-3664", "CVE-2015-8103", "CVE-2014-3662"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2016-01-27T00:08:42", "id": "RHSA-2016:0070", "href": "https://access.redhat.com/errata/RHSA-2016:0070", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}