spacewalk-backend is vulnerable to denial of service. It was found that a remote attacker could upload packages to an RHN Satellite server’s NULL organization without any authorization or authentication. (The NULL organization stores packages synced from RHN Hosted.) Although an attacker cannot put packages into an arbitrary channel and have client systems download them, they could use the flaw to consume all the free space in the partition (/var/) used to store synced packages. With no free space, Satellite would be unable to download updates and new packages, preventing client systems from obtaining them.
rhn.redhat.com/errata/RHSA-2012-0436.html
secunia.com/advisories/48664
www.osvdb.org/81481
www.securityfocus.com/bid/52832
www.securitytracker.com/id?1026873
access.redhat.com/errata/RHSA-2012:0436
access.redhat.com/security/updates/classification/#moderate
exchange.xforce.ibmcloud.com/vulnerabilities/74498