Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2012:0436
HistoryMar 29, 2012 - 12:00 a.m.

(RHSA-2012:0436) Moderate: Red Hat Network Satellite spacewalk-backend security update

2012-03-2900:00:00
access.redhat.com
15

EPSS

0.015

Percentile

86.8%

JSON

Red Hat Network (RHN) Satellite is a systems management tool for
Linux-based infrastructures. It allows for provisioning, monitoring, and
remote management of multiple Linux deployments with a single, centralized
tool.

It was found that a remote attacker could upload packages to an RHN
Satellite server’s NULL organization without any authorization or
authentication. (The NULL organization stores packages synced from RHN
Hosted.) Although an attacker cannot put packages into an arbitrary channel
and have client systems download them, they could use the flaw to consume
all the free space in the partition (/var/) used to store synced packages.
With no free space, Satellite would be unable to download updates and new
packages, preventing client systems from obtaining them. (CVE-2012-1145)

All users of Red Hat Network Satellite are advised to upgrade to these
updated packages, which correct this issue. For this update to take effect,
Red Hat Network Satellite must be restarted. Refer to the Solution section
for details.

OSVersionArchitecturePackageVersionFilename
RedHat6noarchspacewalk-backend-config-files-common< 1.2.13-66.1.el6satspacewalk-backend-config-files-common-1.2.13-66.1.el6sat.noarch.rpm
RedHat6srcspacewalk-backend< 1.2.13-66.1.el6satspacewalk-backend-1.2.13-66.1.el6sat.src.rpm
RedHat6noarchspacewalk-backend-applet< 1.2.13-66.1.el6satspacewalk-backend-applet-1.2.13-66.1.el6sat.noarch.rpm
RedHat6noarchspacewalk-backend-tools< 1.2.13-66.1.el6satspacewalk-backend-tools-1.2.13-66.1.el6sat.noarch.rpm
RedHat6noarchspacewalk-backend-server< 1.2.13-66.1.el6satspacewalk-backend-server-1.2.13-66.1.el6sat.noarch.rpm
RedHat6noarchspacewalk-backend< 1.2.13-66.1.el6satspacewalk-backend-1.2.13-66.1.el6sat.noarch.rpm
RedHat6noarchspacewalk-backend-package-push-server< 1.2.13-66.1.el6satspacewalk-backend-package-push-server-1.2.13-66.1.el6sat.noarch.rpm
RedHat6noarchspacewalk-backend-xmlrpc< 1.2.13-66.1.el6satspacewalk-backend-xmlrpc-1.2.13-66.1.el6sat.noarch.rpm
RedHat6noarchspacewalk-backend-libs< 1.2.13-66.1.el6satspacewalk-backend-libs-1.2.13-66.1.el6sat.noarch.rpm
RedHat6noarchspacewalk-backend-sql-oracle< 1.2.13-66.1.el6satspacewalk-backend-sql-oracle-1.2.13-66.1.el6sat.noarch.rpm
Rows per page:
1-10 of 191

Related

cve 1
nessus 1
prion 1
nvd 1
cvelist 1
veracode 1
cve
cve
CVE-2012-1145
2012-06-16 00:55:06
nessus
nessus
RHEL 6 : Red Hat Network Satellite spacewalk-backend (RHSA-2012:0436)
2013-01-24 00:00:00
prion
prion
Design/Logic Flaw
2012-06-16 00:55:00
nvd
nvd
CVE-2012-1145
2012-06-16 00:55:06
cvelist
cvelist
CVE-2012-1145
2012-06-16 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:12:01

EPSS

0.015

Percentile

86.8%

JSON
Related for RHSA-2012:0436
cve1nessus1prion1nvd1cvelist1veracode1