Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2013:0788
HistoryMay 06, 2013 - 12:00 a.m.

(RHSA-2013:0788) Moderate: subscription-manager security update

2013-05-0600:00:00
access.redhat.com
13

EPSS

0.002

Percentile

59.8%

JSON

The subscription-manager packages provide programs and libraries to allow
users to manage subscriptions and yum repositories from the Red Hat
Entitlement platform.

It was discovered that the rhn-migrate-classic-to-rhsm tool did not verify
the Red Hat Network Classic server’s X.509 certificate when migrating
system profiles registered with Red Hat Network Classic to
Certificate-based Red Hat Network. An attacker could use this flaw to
conduct man-in-the-middle attacks, allowing them to obtain the user’s Red
Hat Network credentials. (CVE-2012-6137)

This issue was discovered by Florian Weimer of the Red Hat Product Security
Team.

All users of subscription-manager are advised to upgrade to these updated
packages, which contain a backported patch to fix this issue.

OSVersionArchitecturePackageVersionFilename
RedHat6x86_64subscription-manager-firstboot< 1.1.23.1-1.el6_4subscription-manager-firstboot-1.1.23.1-1.el6_4.x86_64.rpm
RedHat6ppc64subscription-manager< 1.1.23.1-1.el6_4subscription-manager-1.1.23.1-1.el6_4.ppc64.rpm
RedHat5i386subscription-manager-migration< 1.0.24.1-1.el5_9subscription-manager-migration-1.0.24.1-1.el5_9.i386.rpm
RedHat5ppcsubscription-manager-gui< 1.0.24.1-1.el5_9subscription-manager-gui-1.0.24.1-1.el5_9.ppc.rpm
RedHat6x86_64subscription-manager-migration< 1.1.23.1-1.el6_4subscription-manager-migration-1.1.23.1-1.el6_4.x86_64.rpm
RedHat6x86_64subscription-manager-debuginfo< 1.1.23.1-1.el6_4subscription-manager-debuginfo-1.1.23.1-1.el6_4.x86_64.rpm
RedHat6i686subscription-manager-firstboot< 1.1.23.1-1.el6_4subscription-manager-firstboot-1.1.23.1-1.el6_4.i686.rpm
RedHat5s390xsubscription-manager-gui< 1.0.24.1-1.el5_9subscription-manager-gui-1.0.24.1-1.el5_9.s390x.rpm
RedHat6i686subscription-manager-gui< 1.1.23.1-1.el6_4subscription-manager-gui-1.1.23.1-1.el6_4.i686.rpm
RedHat5i386subscription-manager-firstboot< 1.0.24.1-1.el5_9subscription-manager-firstboot-1.0.24.1-1.el5_9.i386.rpm
Rows per page:
1-10 of 471

Related

prion 1
nvd 1
nessus 2
cve 1
veracode 1
openvas 2
cvelist 1
redhat 1
prion
prion
Code injection
2013-05-21 18:55:00
nvd
nvd
CVE-2012-6137
2013-05-21 18:55:01
nessus
nessus
RHEL 5 / 6 : subscription-manager (RHSA-2013:0788)
2013-05-07 00:00:00
RHEL 6 : rhev-hypervisor6 (RHSA-2013:0907)
2014-11-08 00:00:00
cve
cve
CVE-2012-6137
2013-05-21 18:55:01
veracode
veracode
Man-in-the-Middle (MitM)
2019-01-15 08:52:34
openvas
openvas
RedHat Update for subscription-manager RHSA-2013:0788-01
2013-05-09 00:00:00
RedHat Update for subscription-manager RHSA-2013:0788-01
2013-05-09 00:00:00
cvelist
cvelist
CVE-2012-6137
2013-05-21 18:00:00
redhat
redhat
(RHSA-2013:0907) Important: rhev-hypervisor6 security and bug fix update
2013-06-10 00:00:00

EPSS

0.002

Percentile

59.8%

JSON
Related for RHSA-2013:0788
prion1nvd1nessus2cve1veracode1openvas2cvelist1redhat1