Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2013:0848
HistoryMay 21, 2013 - 12:00 a.m.

(RHSA-2013:0848) Moderate: Red Hat Network Satellite spacewalk-backend security update

2013-05-2100:00:00
access.redhat.com
16

EPSS

0.003

Percentile

70.3%

JSON

Red Hat Network (RHN) Satellite is a system management tool for Linux-based
infrastructures. It allows for provisioning, monitoring, and remote
management of multiple Linux deployments with a single, centralized tool.

It was discovered that Red Hat Network Satellite did not fully check the
authenticity of a client beyond the initial authentication check during an
Inter-Satellite Sync operation. If a remote attacker were to modify the
satellite-sync client to skip the initial authentication call, they could
obtain all channel content from any Red Hat Network Satellite server that
could be reached, even if Inter-Satellite Sync support was disabled.
(CVE-2013-2056)

This issue was discovered by Jan Pazdziora of the Red Hat Satellite
Engineering team.

Users of Red Hat Network Satellite 5.3, 5.4, and 5.5 are advised to upgrade
to these updated packages, which resolve this issue. For this update to
take effect, Red Hat Network Satellite must be restarted. Refer to the
Solution section for details.

OSVersionArchitecturePackageVersionFilename
RedHat6noarchspacewalk-backend-xml-export-libs< 1.7.38-45.el6satspacewalk-backend-xml-export-libs-1.7.38-45.el6sat.noarch.rpm
RedHat6noarchspacewalk-backend< 1.7.38-45.el6satspacewalk-backend-1.7.38-45.el6sat.noarch.rpm
RedHat6noarchspacewalk-backend-upload-server< 1.2.13-79.el6satspacewalk-backend-upload-server-1.2.13-79.el6sat.noarch.rpm
RedHat5noarchspacewalk-backend-server< 1.2.13-79.el5satspacewalk-backend-server-1.2.13-79.el5sat.noarch.rpm
RedHat5noarchspacewalk-backend-applet< 1.2.13-79.el5satspacewalk-backend-applet-1.2.13-79.el5sat.noarch.rpm
RedHat5noarchspacewalk-backend-tools< 0.5.28-59.3.el5satspacewalk-backend-tools-0.5.28-59.3.el5sat.noarch.rpm
RedHat5noarchspacewalk-backend-app< 1.7.38-45.el5satspacewalk-backend-app-1.7.38-45.el5sat.noarch.rpm
RedHat5noarchspacewalk-backend-iss-export< 1.7.38-45.el5satspacewalk-backend-iss-export-1.7.38-45.el5sat.noarch.rpm
RedHat6noarchspacewalk-backend-libs< 1.2.13-79.el6satspacewalk-backend-libs-1.2.13-79.el6sat.noarch.rpm
RedHat5noarchspacewalk-backend-iss-export< 1.2.13-79.el5satspacewalk-backend-iss-export-1.2.13-79.el5sat.noarch.rpm
Rows per page:
1-10 of 911

Related

prion 1
nvd 1
nessus 1
cvelist 1
veracode 1
cve 1
suse 1
prion
prion
Authentication flaw
2013-07-31 13:20:00
nvd
nvd
CVE-2013-2056
2013-07-31 13:20:24
nessus
nessus
RHEL 5 / 6 : spacewalk-backend in Satellite Server (RHSA-2013:0848)
2013-05-22 00:00:00
cvelist
cvelist
CVE-2013-2056
2013-07-31 10:00:00
veracode
veracode
Information Disclosure
2019-01-15 08:53:42
cve
cve
CVE-2013-2056
2013-07-31 13:20:24
suse
suse
Security update for SUSE Manager (important)
2013-05-28 20:04:32

EPSS

0.003

Percentile

70.3%

JSON
Related for RHSA-2013:0848
prion1nvd1nessus1cvelist1veracode1cve1suse1