RedHatRHSA-2015:1591(RHSA-2015:1591) Important: Red Hat Satellite 6.1.1 on RHEL 7
EPSS
Percentile
79.2%
Red Hat Satellite is a systems management tool for Linux-based
infrastructures. It allows for provisioning, remote management and
monitoring of multiple Linux deployments with a single, centralized tool.
It performs provisioning and configuration management of predefined
standard operating environments.
This update provides Satellite 6.1 packages for Red Hat Enterprise Linux 7.
For the full list of new features provided by Satellite 6.1 see the Release
notes linked to in references section. (BZ#1201357)
It was discovered that in Foreman the edit_users permissions (for example,
granted to the Manager role) allowed the user to edit admin user passwords.
An attacker with the edit_users permissions could use this flaw to access
an admin user account, leading to an escalation of privileges.
(CVE-2015-3235)
It was found that Foreman did not set the HttpOnly flag on session cookies.
This could allow a malicious script to access the session cookie.
(CVE-2015-3155)
It was found that when making an SSL connection to an LDAP authentication
source in Foreman, the remote server certificate was accepted without any
verification against known certificate authorities, potentially making
TLS connections vulnerable to man-in-the-middle attacks. (CVE-2015-1816)
A flaw was found in the way foreman authorized user actions on resources
via the API when an organization was not explicitly set. A remote attacker
could use this flaw to obtain additional information about resources they
were not authorized to access. (CVE-2015-1844)
A cross-site scripting (XSS) flaw was found in Foreman’s template preview
screen. A remote attacker could use this flaw to perform cross-site
scripting attacks by tricking a user into viewing a malicious template.
Note that templates are commonly shared among users. (CVE-2014-3653)
It was found that python-oauth2 did not properly verify the nonce of a
signed URL. An attacker able to capture network traffic of a website using
OAuth2 authentication could use this flaw to conduct replay attacks
against that website. (CVE-2013-4346)
It was found that python-oauth2 did not properly generate random values
for use in nonces. An attacker able to capture network traffic of a website
using OAuth2 authentication could use this flaw to conduct replay attacks
against that website. (CVE-2013-4347)
Red Hat would like to thank Rufus Järnefelt of Coresec for reporting the
foreman HttpOnly issue.
All users who require Satellite 6.1 are advised to install these new packages.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | src | plexus-interactivity | < 1.0-0.14.alpha6.el7 | plexus-interactivity-1.0-0.14.alpha6.el7.src.rpm |
| RedHat | 7 | src | rubygem-oauth | < 0.4.7-8.el7sat | rubygem-oauth-0.4.7-8.el7sat.src.rpm |
| RedHat | 7 | noarch | foreman-proxy | < 1.7.2.5-1.el7sat | foreman-proxy-1.7.2.5-1.el7sat.noarch.rpm |
| RedHat | 7 | src | hfsplus-tools | < 332.14-12.el7 | hfsplus-tools-332.14-12.el7.src.rpm |
| RedHat | 7 | noarch | ruby193-rubygem-angular-rails-templates | < 0.1.2-1.el7sat | ruby193-rubygem-angular-rails-templates-0.1.2-1.el7sat.noarch.rpm |
| RedHat | 7 | src | maven-file-management | < 1.2.1-8.el7 | maven-file-management-1.2.1-8.el7.src.rpm |
| RedHat | 7 | noarch | rubygem-sinatra | < 1.3.6-27.el7sat | rubygem-sinatra-1.3.6-27.el7sat.noarch.rpm |
| RedHat | 7 | noarch | python-gofer | < 2.6.2-2.el7sat | python-gofer-2.6.2-2.el7sat.noarch.rpm |
| RedHat | 7 | src | python-celery | < 3.1.11-1.el7sat | python-celery-3.1.11-1.el7sat.src.rpm |
| RedHat | 7 | x86_64 | openscap-python | < 1.2.4-1.el7sat | openscap-python-1.2.4-1.el7sat.x86_64.rpm |
Related
