7 matches found
RHCOS 1 : openshift-origin-broker (RHSA-2014:0422)
The remote Red Hat Enterprise Linux CoreOS 1 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2014:0422 advisory. - OpenShift: openshift-origin-broker plugin allows impersonation CVE-2014-0188 Note that Nessus has not tested for this issue but has instead...
RHCOS 2 : openshift-origin-broker (RHSA-2014:0423)
The remote Red Hat Enterprise Linux CoreOS 2 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2014:0423 advisory. - OpenShift: openshift-origin-broker plugin allows impersonation CVE-2014-0188 Note that Nessus has not tested for this issue but has instead...
RHEL 6 : openshift-origin-broker (RHSA-2014:0422)
Updated openshift-origin-broker and rubygem-openshift-origin-auth-remote-user packages that fix one security issue are now available for Red Hat OpenShift Enterprise 1.2.7. The Red Hat Security Response Team has rated this update as having Critical security impact. A Common Vulnerability Scoring...
CVE-2014-0188
CVE-2014-0188 affects Red Hat OpenShift Enterprise (openshift-origin-broker) up to version 2.0.5 and 1.2.7, where authentication requests from the remote-user auth plug-in can be bypassed via the X-Remote-User header in a passthrough trigger. The issue enables remote attackers to impersonate arbi...
CVE-2014-0188
The openshift-origin-broker in Red Hat OpenShift Enterprise 2.0.5, 1.2.7, and earlier does not properly handle authentication requests from the remote-user auth plugin, which allows remote attackers to bypass authentication and impersonate arbitrary users via the X-Remote-User header in a request...
Critical: Red Hat Security Advisory: openshift-origin-broker security update
Updated openshift-origin-broker and rubygem-openshift-origin-auth-remote-user packages that fix one security issue are now available for Red Hat OpenShift Enterprise 2.0.5. The Red Hat Security Response Team has rated this update as having Critical security impact. A Common Vulnerability Scoring...
Critical: Red Hat Security Advisory: openshift-origin-broker security update
Updated openshift-origin-broker and rubygem-openshift-origin-auth-remote-user packages that fix one security issue are now available for Red Hat OpenShift Enterprise 1.2.7. The Red Hat Security Response Team has rated this update as having Critical security impact. A Common Vulnerability Scoring...