RHEL 6 : rhevm-reports 3.3.3 (RHSA-2014:0558)

An updated rhevm-reports package that fixes three security issues and one bug is now available. The Red Hat Security Response Team has rated this update as having Low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for eac...

CVE-2014-0200

The CVE-2014-0200 issue affects the Red Hat Enterprise Virtualization Manager’s rhevm-reports package prior to version 3.3.3-1. The root cause is world-readable permissions on the datasource configuration file js-jboss7-ds.xml, which can let a local user read sensitive information. Red Hat RHSA-2...