Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2018:2616
HistorySep 04, 2018 - 6:28 a.m.

(RHSA-2018:2616) Low: RHGS WA security, bug fix, and enhancement update

2018-09-0406:28:16
access.redhat.com
16

0.002 Low

EPSS

Percentile

58.4%

JSON

Red Hat Gluster Storage Web Administration includes a fully automated setup based on Ansible and provides deep metrics and insights into active Gluster storage pools by using the Grafana platform. Red Hat Gluster Storage Web Administration provides a dashboard view which allows an administrator to get a view of overall gluster health in terms of hosts, volumes, bricks, and other components of GlusterFS.

Security Fix(es):

  • tendrl-api: Improper cleanup of session token can allow attackers to hijack user sessions (CVE-2018-1127)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

This issue was discovered by Filip BalΓ‘k (Red Hat).

Additional Changes:

These updated Red Hat Gluster Storage Wed Administration packages include numerous bug fixes and enhancements. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat Gluster Storage 3.4 Release Notes for information on the most significant of these changes:

https://access.redhat.com/site/documentation/en-US/red_hat_gluster_storage/
3.4/html/3.4_release_notes/

All users of Red Hat Gluster Storage are advised to upgrade to these
updated packages, which provide numerous bug fixes and enhancements.

OSVersionArchitecturePackageVersionFilename
RedHat7noarchpython-flask<Β 0.10.1-5.el7rhgspython-flask-0.10.1-5.el7rhgs.noarch.rpm
RedHat7noarchtendrl-node-agent<Β 1.6.3-10.el7rhgstendrl-node-agent-1.6.3-10.el7rhgs.noarch.rpm
RedHat7noarchtendrl-ansible<Β 1.6.3-7.el7rhgstendrl-ansible-1.6.3-7.el7rhgs.noarch.rpm
RedHat7noarchpython-flask-doc<Β 0.10.1-5.el7rhgspython-flask-doc-0.10.1-5.el7rhgs.noarch.rpm
RedHat7noarchtendrl-monitoring-integration<Β 1.6.3-11.el7rhgstendrl-monitoring-integration-1.6.3-11.el7rhgs.noarch.rpm
RedHat7noarchtendrl-gluster-integration<Β 1.6.3-10.el7rhgstendrl-gluster-integration-1.6.3-10.el7rhgs.noarch.rpm
RedHat7noarchpython-itsdangerous<Β 0.23-2.el7python-itsdangerous-0.23-2.el7.noarch.rpm
RedHat7noarchtendrl-api<Β 1.6.3-5.el7rhgstendrl-api-1.6.3-5.el7rhgs.noarch.rpm
RedHat7noarchtendrl-grafana-plugins<Β 1.6.3-11.el7rhgstendrl-grafana-plugins-1.6.3-11.el7rhgs.noarch.rpm
RedHat7noarchtendrl-notifier<Β 1.6.3-4.el7rhgstendrl-notifier-1.6.3-4.el7rhgs.noarch.rpm
Rows per page:
1-10 of 131

Related

redhatcve 1
prion 1
nessus 1
cve 1
nvd 1
veracode 1
cvelist 1
redhatcve
redhatcve
CVE-2018-1127
2018-05-08 05:18:59
prion
prion
Session fixation
2018-09-11 15:29:00
nessus
nessus
RHEL 7 : RHGS WA (RHSA-2018:2616)
2018-09-06 00:00:00
cve
cve
CVE-2018-1127
2018-09-11 15:29:00
nvd
nvd
CVE-2018-1127
2018-09-11 15:29:00
veracode
veracode
Replay Attack
2019-01-15 09:24:43
cvelist
cvelist
CVE-2018-1127
2018-09-11 15:00:00

0.002 Low

EPSS

Percentile

58.4%

JSON
Related for RHSA-2018:2616
redhatcve1prion1nessus1cve1nvd1veracode1cvelist1