3 matches found
RHEL 7 : Virtualization Manager (RHSA-2018:2071)
An update for org.ovirt.engine-root is now available for Red Hat Virtualization Manager 4.2. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
CVE-2018-1072
CVE-2018-1072 affects ovirt-engine prior to 4.2.2, where engine-backup logging could expose database credentials. The root cause is unfiltered passwords being written to provisioning logs when using --provision*db, leading to potential disclosure of usernames and passwords via shared logs. Public...
CVE-2018-1072
A flaw was found in ovirt-engine. When engine-backup was run with one of the options "--provisiondb", the database username and password were logged in cleartext. Sharing the provisioning log might inadvertently leak database passwords...