8 matches found
RHCOS 2 : rubygem-openshift-origin-node (RHSA-2014:0764)
The remote Red Hat Enterprise Linux CoreOS 2 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2014:0764 advisory. - Origin: Command execution as root via downloadable cartridge source-url CVE-2014-3496 Note that Nessus has not tested for this issue but ha...
RHCOS 2 : rubygem-openshift-origin-node (RHSA-2014:0763)
The remote Red Hat Enterprise Linux CoreOS 2 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2014:0763 advisory. - Origin: Command execution as root via downloadable cartridge source-url CVE-2014-3496 Note that Nessus has not tested for this issue but ha...
RHEL 6 : rubygem-openshift-origin-node (RHSA-2014:0764)
An updated rubygem-openshift-origin-node package that fixes one security issue and several bugs is now available for Red Hat OpenShift Enterprise 2.1.1. The Red Hat Security Response Team has rated this update as having Critical security impact. A Common Vulnerability Scoring System CVSS base...
RHEL 6 : rubygem-openshift-origin-node (RHSA-2014:0763)
An updated rubygem-openshift-origin-node package that fixes one security issue is now available for Red Hat OpenShift Enterprise 2.0.6. The Red Hat Security Response Team has rated this update as having Critical security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...
RHEL 6 : rubygem-openshift-origin-node (RHSA-2014:0762)
An updated rubygem-openshift-origin-node package that fixes one security issue is now available for Red Hat OpenShift Enterprise 1.2.8. The Red Hat Security Response Team has rated this update as having Critical security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...
CVE-2014-3496
CVE-2014-3496 affects rubygem-openshift-origin-node in Red Hat OpenShift/OpenShift Origin. A command-injection flaw in cartridge_repository.rb allows remote attackers to execute arbitrary commands via shell metacharacters in a Source-Url ending with .tar.gz, .zip, .tgz, or .tar in a cartridge man...
Critical: Red Hat Security Advisory: rubygem-openshift-origin-node security update
An updated rubygem-openshift-origin-node package that fixes one security issue is now available for Red Hat OpenShift Enterprise 2.0.6. The Red Hat Security Response Team has rated this update as having Critical security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...
Critical: Red Hat Security Advisory: rubygem-openshift-origin-node security update
An updated rubygem-openshift-origin-node package that fixes one security issue is now available for Red Hat OpenShift Enterprise 1.2.8. The Red Hat Security Response Team has rated this update as having Critical security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...