Headline
CVE-2015-7502: Red Hat Customer Portal - Access to 24x7 support and knowledge
Red Hat CloudForms 3.2 Management Engine (CFME) 5.4.4 and CloudForms 4.0 Management Engine (CFME) 5.5.0 do not properly encrypt data in the backend PostgreSQL database, which might allow local users to obtain sensitive data and consequently gain privileges by leveraging access to (1) database exports or (2) log files.
SRPM cfme-5.5.0.13-2.el7cf.src.rpm SHA-256: ee8abda4f115dff256596c7ea459f37c6411227fbc7bb18d2e9f327c35e8fa6a cfme-appliance-5.5.0.13-1.el7cf.src.rpm SHA-256: e964f5887242c0d2c0091f9b3c3d69c55ea5fe7c58dd3ef326cf6478d75f1f07 cfme-gemset-5.5.0.13-1.el7cf.src.rpm SHA-256: f225dc4b53ee7e905e60438c0ae2c8f688c98ef0d55f3300f8c247b4be432ffe prince-9.0r2-10.el7cf.src.rpm SHA-256: bbdc73a151984e994ffcaeb589f0f4004fde66c5569a15be4d86dc84517af57a rh-ruby22-rubygem-bcrypt-3.1.10-3.el7cf.src.rpm SHA-256: 649db1f26e11d30ac9d7dd4037ecab5b1a03696e514162a9afb42ad6ca79533e rh-ruby22-rubygem-escape_utils-1.1.0-2.el7cf.src.rpm SHA-256: d5fd9fae58bcae571ecb5fc1892c2f0a746aa74964a8982e264caceefcf71da8 rh-ruby22-rubygem-eventmachine-1.0.7-6.el7cf.src.rpm SHA-256: 526686cb8ba9baac1f3847c35b23165c7eba2ba6089aee1e7a261875a6db5fe0 rh-ruby22-rubygem-ffi-1.9.8-4.el7cf.src.rpm SHA-256: 6200468c6d20dcac7a7d617a824c09251b15f056beb9ad7fb7501748f0e1e150 rh-ruby22-rubygem-json-1.8.2-9.el7cf.src.rpm SHA-256: 0020ef89b73667f04ec9bad843452a9ed66e0205b6b57b4fa1503d030a54d7f8 rh-ruby22-rubygem-linux_block_device-0.1.0-2.el7cf.src.rpm SHA-256: b2452237431c07667421f99a1ce551704571157dd2051b5d4e307226f520c74a rh-ruby22-rubygem-memory_buffer-0.1.0-2.el7cf.src.rpm SHA-256: c51a8b9cd7831dfeebde06329d0298918569743c989b40bcdecfd1217a52d428 rh-ruby22-rubygem-net_app_manageability-0.1.0-3.el7cf.src.rpm SHA-256: 4176fe6029ec1f365c11f4a8266c78df6c76e73bd1107391f321dec19c5bd389 rh-ruby22-rubygem-nokogiri-1.6.6.2-3.el7cf.src.rpm SHA-256: 4e8a778e979cac5b4f12e8c8a0c637d9a60efd3a475d90debd5f66c189b9b29d rh-ruby22-rubygem-pg-0.18.2-2.el7cf.src.rpm SHA-256: cce48540593007c85c9a7e467f75c7edeed5e94c72d40e19a4ad141ff705aecf rh-ruby22-rubygem-psych-2.0.13-4.el7cf.src.rpm SHA-256: 8ea37a9cd140703a18aeb77f18ec5e9dadb5f161f8db4ffb42f222ef4ec3e395 rh-ruby22-rubygem-puma-2.13.4-2.el7cf.src.rpm SHA-256: e12d3b888754c3e6b6c728cec351436a1bca67fd97c0d333774ae9b36b93aa4d rh-ruby22-rubygem-redhat_access_cfme-0.0.7-1.el7cf.src.rpm SHA-256: fc587e793df2b4d3656c0581d80284a6e6b11153ec5f7fd8d54d9dbfcdc4c64b rh-ruby22-rubygem-redhat_access_lib-0.0.6-1.el7cf.src.rpm SHA-256: 760a4f38a977caa07b88a6c0d3afc43560ab0835ee86843724623c9dac531ccc rh-ruby22-rubygem-thin-1.6.3-2.el7cf.src.rpm SHA-256: 8a2463b5e32de6f28ad81e01a10abd5a2a8f6c7961e97ae99f0888d9b2ed6a10 rh-ruby22-rubygem-unf_ext-0.0.7.1-3.el7cf.src.rpm SHA-256: b99e01a61fdd91e66346c4531f7b6d62f50672f41f577869f4ddf194e986c2b9 wmi-1.3.14-6.el7cf.src.rpm SHA-256: adc54c073a4aa7bfd80521bf192091d29fb5c65609b6d3f2c263636260fcbd42 x86_64 cfme-5.5.0.13-2.el7cf.x86_64.rpm SHA-256: b195241007fe1383cf7d2e877aa8d9ffffc00b6e62638eaf7e8b942705e1ac6b cfme-appliance-5.5.0.13-1.el7cf.x86_64.rpm SHA-256: bccda74351a66ced4eac0754c96dbbcf6479bbd6c431a5b8e436a963f2356cbb cfme-appliance-debuginfo-5.5.0.13-1.el7cf.x86_64.rpm SHA-256: 968901ba53f710f517f97d263e2dddf4b2176632d021b472e549ad4072e69649 cfme-debuginfo-5.5.0.13-2.el7cf.x86_64.rpm SHA-256: 7968789e9334c8f02704b9b186ed3c2cee7e2aa0d2f51e0c9773365e107b9006 cfme-gemset-5.5.0.13-1.el7cf.x86_64.rpm SHA-256: 7564d069d2153b61aa6593b3a17a7cf38020b6344f3d3e4e391c78a5c8675013 prince-9.0r2-10.el7cf.x86_64.rpm SHA-256: aa1203f1c3325e32839a840dfc9a45989b15c1ae1b03d443468ba3099d47cb1b rh-ruby22-rubygem-bcrypt-3.1.10-3.el7cf.x86_64.rpm SHA-256: 7ef80b9a538d08fde41d80b960e042e3c09da1b3ef77daaace33ea57dffff366 rh-ruby22-rubygem-bcrypt-debuginfo-3.1.10-3.el7cf.x86_64.rpm SHA-256: 7bc0dd02a34e7edd368be5a202ce58225a4fe9f8efb7a9146f89ee4342150ed7 rh-ruby22-rubygem-escape_utils-1.1.0-2.el7cf.x86_64.rpm SHA-256: 6b12d2275449f424fdde68a79a0f816214680ede781cfba831daaea17f1cae3c rh-ruby22-rubygem-escape_utils-debuginfo-1.1.0-2.el7cf.x86_64.rpm SHA-256: 7e5922bb7b3bcb6128c6c3f60ba1a41eb17167580de2bdaa526a8822128b1985 rh-ruby22-rubygem-eventmachine-1.0.7-6.el7cf.x86_64.rpm SHA-256: 163d3f9a9fb964976780b4c5bb179b0076dbe91f1222c80436e41954574ce713 rh-ruby22-rubygem-eventmachine-debuginfo-1.0.7-6.el7cf.x86_64.rpm SHA-256: f2eb12d2240c55568c1ac4a2db0ed72c0048c9a9a714ed5296b431f9a4250744 rh-ruby22-rubygem-ffi-1.9.8-4.el7cf.x86_64.rpm SHA-256: 46169ff8526a926c6e0ce415e52d8e3cc370be567223967321b465f0005d8994 rh-ruby22-rubygem-ffi-debuginfo-1.9.8-4.el7cf.x86_64.rpm SHA-256: 454282e2e09963b9547d705901e5754c5349ccd83f2811f81f518c5ed5cf6496 rh-ruby22-rubygem-json-1.8.2-9.el7cf.x86_64.rpm SHA-256: 12ed444b9c2ddf6d34ca09bf662efe7e68685ff89535ed856d6821a45e9361b6 rh-ruby22-rubygem-json-debuginfo-1.8.2-9.el7cf.x86_64.rpm SHA-256: 442d1b0ae8fe03c707b7d438d53283cf3c47ba347b1c0db81d5135a17f0733bf rh-ruby22-rubygem-linux_block_device-0.1.0-2.el7cf.x86_64.rpm SHA-256: 1b1da8cc8ee3747530b8b9c09f99b7e8f751c9466f9c9178bc69ea3f29ef69f6 rh-ruby22-rubygem-linux_block_device-debuginfo-0.1.0-2.el7cf.x86_64.rpm SHA-256: 0d39afcb3726ed5d7a3d1745f4f1f5f23cad3cb2ecde7ab1598cd6721d08d4f8 rh-ruby22-rubygem-memory_buffer-0.1.0-2.el7cf.x86_64.rpm SHA-256: d34f9c8cbe4ed8e65d69312f5b8283790db7a5b9d56b3ac28233a277a907b3c1 rh-ruby22-rubygem-memory_buffer-debuginfo-0.1.0-2.el7cf.x86_64.rpm SHA-256: 2ed4bdf411cc3e1a9419278c18a039e96d232817241c5ec117fdc56d9b5f3a54 rh-ruby22-rubygem-net_app_manageability-0.1.0-3.el7cf.x86_64.rpm SHA-256: 99945cd84916bbb905c0f00e62a2ef83c287f2761070a00e92d745113248c05c rh-ruby22-rubygem-net_app_manageability-debuginfo-0.1.0-3.el7cf.x86_64.rpm SHA-256: 6dc18298940ec1592be184f8098d597deb7a953b8cd4e9f3a11c0cbc10b5fefb rh-ruby22-rubygem-nokogiri-1.6.6.2-3.el7cf.x86_64.rpm SHA-256: 405b0ff3f1b8e56950d716f1bd5521a58c7ae9a2e16be64c82a24cb61d201ee5 rh-ruby22-rubygem-nokogiri-debuginfo-1.6.6.2-3.el7cf.x86_64.rpm SHA-256: 5f24ca51ed95d54c83848613b64898cde1baaf3d49bd2e4d5ba70d33318a3457 rh-ruby22-rubygem-pg-0.18.2-2.el7cf.x86_64.rpm SHA-256: d2379aba361a829f25ae1320a44f3f9470e90da9bd0eccc25f9b7e443cd4a3ff rh-ruby22-rubygem-pg-debuginfo-0.18.2-2.el7cf.x86_64.rpm SHA-256: 3b8e84191e5c9318946f559480f30b6ea21145bef850cad9c561ba8003c5a255 rh-ruby22-rubygem-psych-2.0.13-4.el7cf.x86_64.rpm SHA-256: 26472cf71af342fc333e6a49afc23236a38b00265cf376b19bbda0588d2d0a86 rh-ruby22-rubygem-psych-debuginfo-2.0.13-4.el7cf.x86_64.rpm SHA-256: b03bab6db508e0b21e3753370ce03a6aadbeac09c40731f0897be66d5a1194d6 rh-ruby22-rubygem-puma-2.13.4-2.el7cf.x86_64.rpm SHA-256: 0f7096446d5d9c433c9cc39584b95d8dc2c7cb5c9872aebc45d83bc1c6d930b7 rh-ruby22-rubygem-puma-debuginfo-2.13.4-2.el7cf.x86_64.rpm SHA-256: d0944242ea02032838ebe262e1d8ca036656d246608ec732cc434d330dbaeb4d rh-ruby22-rubygem-redhat_access_cfme-0.0.7-1.el7cf.noarch.rpm SHA-256: 3431b4e15fbfb6c40d65a9d167642a4363a825dc6b4b0e11372bfc3caab3f0de rh-ruby22-rubygem-redhat_access_lib-0.0.6-1.el7cf.noarch.rpm SHA-256: 93675f10bc80762091dd297092fb920acca1b2d57c49edc5a3d8ce5fe85cb541 rh-ruby22-rubygem-thin-1.6.3-2.el7cf.x86_64.rpm SHA-256: bdfa6e37a45e370ef234ef437cc353e64ab8a78a4963d78c1ba8374198bce6c3 rh-ruby22-rubygem-thin-debuginfo-1.6.3-2.el7cf.x86_64.rpm SHA-256: 76b90c47f434ad3091c74f42dc80cb1020a74d210423d717d7774336da70e859 rh-ruby22-rubygem-unf_ext-0.0.7.1-3.el7cf.x86_64.rpm SHA-256: 43758ded2aa40b9812c9bcf983ad8c636cb5bdf4cfc614b7d1cb36cc30700361 rh-ruby22-rubygem-unf_ext-debuginfo-0.0.7.1-3.el7cf.x86_64.rpm SHA-256: 0009570a3ca5f905ad8d0ffbd3e1a9c078bedb90bf15cc4b2a0a2ca5320f5961 rh-ruby22-rubygem-unf_ext-doc-0.0.7.1-3.el7cf.noarch.rpm SHA-256: 5f3b67f3c2e83d5192e8d256696d8696a9ef0576fd3e2a0c18ee78f28d486463 wmi-1.3.14-6.el7cf.x86_64.rpm SHA-256: bcb98424a7ec0d334f959b483545f43a5035bb8828e06101ce9a1c5b012bbc33 wmi-debuginfo-1.3.14-6.el7cf.x86_64.rpm SHA-256: b720fa2f3e3eedb26ff26a56c00394c9b9fafb09e70f306baec433f169def3ce