RHSA-2014:0215Critical
Red Hat Security Advisory: cfme security, bug fix, and enhancement update
🔗 CVE IDs covered (5)
📋 Description
CVE-2013-0186 — EVM: Stored XSS CVE-2013-4164 — ruby: heap overflow in floating point parsing CVE-2014-0057 — CFME: Dangerous send in ServiceController CVE-2014-0081 — rubygem-actionpack: number_to_currency, number_to_percentage and number_to_human XSS vulnerability CVE-2014-0082 — rubygem-actionpack: Action View string handling denial of service
🔗 References (8)
- selfhttps://access.redhat.com/errata/RHSA-2014:0215
- externalhttps://access.redhat.com/security/updates/classification/#critical
- externalhttps://access.redhat.com/site/documentation/en-US/CloudForms/3.0/html/Management_Engine_5.2_Technical_Notes/index.html
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1033460
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1064140
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1065520
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1065538
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2014/rhsa-2014_0215.json