(RHSA-2015:2551) Moderate: CFME 5.5.0 bug fixes and enhancement update

2015-12-0812:49:53

access.redhat.com

0.001 Low

EPSS

Percentile

34.1%

JSON

Red Hat CloudForms Management Engine delivers the insight, control,
and automation needed to address the challenges of managing virtual
environments. CloudForms Management Engine is built on Ruby on Rails,
a model-view-controller (MVC) framework for web application
development. Action Pack implements the controller and the view
components.

A privilege escalation flaw was discovered in CloudForms, where in
certain situations, CloudForms could read encrypted data from the
database and then write decrypted data back into the database. If the
database was then exported or log files generated, a local attacker
might be able to gain access to sensitive information. (CVE-2015-7502)

This update also fixes several bugs. Documentation for these changes
is available in the Release Notes linked to in the References section.

All CFME users are advised to upgrade to these updated packages, which
correct these issues and add these enhancements.

OSVersionArchitecturePackageVersionFilename
RedHat7srcrh-ruby22-rubygem-redhat_access_cfme< 0.0.7-1.el7cfrh-ruby22-rubygem-redhat_access_cfme-0.0.7-1.el7cf.src.rpm
RedHat7x86_64cfme-debuginfo< 5.5.0.13-2.el7cfcfme-debuginfo-5.5.0.13-2.el7cf.x86_64.rpm
RedHat7x86_64rh-ruby22-rubygem-memory_buffer< 0.1.0-2.el7cfrh-ruby22-rubygem-memory_buffer-0.1.0-2.el7cf.x86_64.rpm
RedHat7x86_64rh-ruby22-rubygem-ffi-debuginfo< 1.9.8-4.el7cfrh-ruby22-rubygem-ffi-debuginfo-1.9.8-4.el7cf.x86_64.rpm
RedHat7x86_64rh-ruby22-rubygem-memory_buffer-debuginfo< 0.1.0-2.el7cfrh-ruby22-rubygem-memory_buffer-debuginfo-0.1.0-2.el7cf.x86_64.rpm
RedHat7srcwmi< 1.3.14-6.el7cfwmi-1.3.14-6.el7cf.src.rpm
RedHat7x86_64rh-ruby22-rubygem-net_app_manageability< 0.1.0-3.el7cfrh-ruby22-rubygem-net_app_manageability-0.1.0-3.el7cf.x86_64.rpm
RedHat7x86_64rh-ruby22-rubygem-puma< 2.13.4-2.el7cfrh-ruby22-rubygem-puma-2.13.4-2.el7cf.x86_64.rpm
RedHat7x86_64rh-ruby22-rubygem-psych-debuginfo< 2.0.13-4.el7cfrh-ruby22-rubygem-psych-debuginfo-2.0.13-4.el7cf.x86_64.rpm
RedHat7x86_64rh-ruby22-rubygem-eventmachine< 1.0.7-6.el7cfrh-ruby22-rubygem-eventmachine-1.0.7-6.el7cf.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	7	src	rh-ruby22-rubygem-redhat_access_cfme	< 0.0.7-1.el7cf	rh-ruby22-rubygem-redhat_access_cfme-0.0.7-1.el7cf.src.rpm
RedHat	7	x86_64	cfme-debuginfo	< 5.5.0.13-2.el7cf	cfme-debuginfo-5.5.0.13-2.el7cf.x86_64.rpm
RedHat	7	x86_64	rh-ruby22-rubygem-memory_buffer	< 0.1.0-2.el7cf	rh-ruby22-rubygem-memory_buffer-0.1.0-2.el7cf.x86_64.rpm
RedHat	7	x86_64	rh-ruby22-rubygem-ffi-debuginfo	< 1.9.8-4.el7cf	rh-ruby22-rubygem-ffi-debuginfo-1.9.8-4.el7cf.x86_64.rpm
RedHat	7	x86_64	rh-ruby22-rubygem-memory_buffer-debuginfo	< 0.1.0-2.el7cf	rh-ruby22-rubygem-memory_buffer-debuginfo-0.1.0-2.el7cf.x86_64.rpm
RedHat	7	src	wmi	< 1.3.14-6.el7cf	wmi-1.3.14-6.el7cf.src.rpm
RedHat	7	x86_64	rh-ruby22-rubygem-net_app_manageability	< 0.1.0-3.el7cf	rh-ruby22-rubygem-net_app_manageability-0.1.0-3.el7cf.x86_64.rpm
RedHat	7	x86_64	rh-ruby22-rubygem-puma	< 2.13.4-2.el7cf	rh-ruby22-rubygem-puma-2.13.4-2.el7cf.x86_64.rpm
RedHat	7	x86_64	rh-ruby22-rubygem-psych-debuginfo	< 2.0.13-4.el7cf	rh-ruby22-rubygem-psych-debuginfo-2.0.13-4.el7cf.x86_64.rpm
RedHat	7	x86_64	rh-ruby22-rubygem-eventmachine	< 1.0.7-6.el7cf	rh-ruby22-rubygem-eventmachine-1.0.7-6.el7cf.x86_64.rpm

Rows per page:

1-10 of 601

0.001 Low

EPSS

Percentile

34.1%

JSON

Related for RHSA-2015:2551