BIT-CEPH-2022-0670

A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of...

CBL Mariner 2.0 Security Update: ceph (CVE-2022-0670)

The version of ceph installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-0670 advisory. - A flaw was found in Openstack manilla owning a Ceph File system share, which enables the owner to read/write an...

pki-core security update

10.5.18-32 - - RHEL 7.9 Async Security Update CY24Q2.4: - - Updated nspr-devel and nss-devel build requirements as well as nss and nss-tools runtime requirements mharmsen - Updated jss dependencies mharmsen - Added git build dependency mharmsen - Additional trivial fix jmagne - RHEL-9917 -...

pki-core security update

10.5.18-23 - - RHEL 7.9 Batch Update 18: - - Bugzilla Bug 2107329 - CVE-2022-2414 pki-core: access to external entities when parsing XML can lead to XXE rhel-7.9.z ckelley, mharmsen - Bugzilla Bug 2111514 - CVE-2022-2393 pki-core: When using the caServerKeygenDirUserCert profile, user can get...

CVE-2022-0670

A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of...

CVE-2022-0670

A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of...

Design/Logic Flaw

A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of...

CVE-2022-0670

CVE-2022-0670 affects Ceph/Manailla integration for OpenStack CephFS shares via the volumes plugin in Ceph Manager. The root cause is a bug in the volumes plugin that lets the share owner read/write any Manila share or the entire filesystem, compromising confidentiality and integrity. Remediation...

CVE-2022-0670

A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of...

CVE-2022-0670

A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of...

CVE-2022-0670

A flaw was found in Openstack manilla owning a Ceph File system "share", which enables the owner to read/write any manilla share or entire file system. The vulnerability is due to a bug in the "volumes" plugin in Ceph Manager. This allows an attacker to compromise Confidentiality and Integrity of...

pcsc-lite bug fix and enhancement update

PC/SC Lite provides a Windows SCard compatible interface for communicating with smart cards, smart card readers, and other security tokens. Bug Fixes: Increase global reader array size to 48 to address issue with RHCS secure channel creation BZ1972569 Increase global reader array size to 48 to...

Moderate: Red Hat Security Advisory: pki-core and redhat-pki-theme security and bug fix update

An update for pki-core and redhat-pki-theme is now available for Red Hat Certificate System 9.7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

pki-core security, bug fix, and enhancement update

10.5.1-13.1 - Rebuild due to build system database problem 10.5.1-13 - - RHEL 7.5: - - Bugzilla Bug 1553068 - Using a Netmask produces an odd entry in a certifcate rhel-7.5.z ftweedal - Bugzilla Bug 1585945 - CMC CRMF requests result in InvalidKeyFormatException when signing algorithm is ECC...

CVE-2012-4555

CVE-2012-4555 affects Red Hat Certificate System (RHCS) pki-tps before version 8.1.3. The vulnerability arises from improper handling of interruptions during token format operations, allowing a remote attacker to cause a denial of service via a NULL pointer dereference, crashing the Apache httpd ...

CVE-2012-4543

CVE-2012-4543 describes multiple XSS vulnerabilities in Red Hat Certificate System (RHCS) before 8.1.3. The flaws allow remote attackers to inject arbitrary web script or HTML via the (1) pageStart or (2) pageSize parameters to the displayCRL script, or (3) nonce variable to the profileProcess sc...

CVE-2012-2662

CVE-2012-2662 affects Red Hat Certificate System (RHCS) and Dogtag Certificate System. The vulnerability enables multiple cross-site scripting (XSS) in the web interface via unspecified parameters on the System Agent and End Entity pages, allowing remote attackers to inject arbitrary scripts/HTML...

Authentication flaw

Red Hat Certificate System RHCS 7.3 and 8 and Dogtag Certificate System do not require authentication for requests to decrypt SCEP one-time PINs, which allows remote attackers to obtain PINs by sniffing the network for SCEP requests and then sending decryption requests to the Certificate Authorit...

CVE-2010-3868

CVE-2010-3868 affects Red Hat Certificate System (RHCS) 7.3/8 and Dogtag Certificate System: unauthenticated decryption of SCEP one-time PINs in SCEP requests allows remote attackers who sniff the network to obtain PINs. Red Hat/RHSA advisories (0837/0838) fix this by restricting decryption to au...

Authentication flaw

The verifyProof function in the Token Processing System TPS component in Red Hat Certificate System RHCS 7.1 through 7.3 and Dogtag Certificate System 1.0 returns successfully even when token enrollment did not use the hardware key, which allows remote authenticated users with enrollment privileg...