4 matches found
CVE-2014-3561
The rhevm-log-collector package in Red Hat Enterprise Virtualization 3.4 uses the PostgreSQL database password on the command line when calling sosreport, which allows local users to obtain sensitive information by listing the processes...
CVE-2014-3561
The CVE-2014-3561 issue affects Red Hat Enterprise Virtualization 3.4 via the rhevm-log-collector. The root cause is that rhevm-log-collector passes the PostgreSQL database password on the command line when invoking sosreport, enabling a local attacker to read the password by listing processes. T...
RHEL 6 : rhevm-log-collector (RHSA-2014:1947)
An updated rhevm-log-collector package that fixes one security issue is now available for Red Hat Enterprise Virtualization 3. Red Hat Product Security has rated this update as having Low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity ratin...
Low: Red Hat Security Advisory: rhevm-log-collector security update
An updated rhevm-log-collector package that fixes one security issue is now available for Red Hat Enterprise Virtualization 3. Red Hat Product Security has rated this update as having Low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity ratin...