{"id":"RHSA-2017:3427","summary":"Red Hat Security Advisory: org.ovirt.engine-root security, bug fix, and enhancement update","modified":"2026-05-13T10:36:41.299166Z","published":"2024-09-13T14:42:53Z","upstream":["CVE-2016-6338"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2017:3427"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#low"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1369285"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1483576"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1501793"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1509270"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1511335"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1513684"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1514899"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_3427.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2016-6338"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2016-6338"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2016-6338"}],"affected":[{"package":{"name":"ovirt-engine","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-backend","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-backend"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-dbscripts","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-dbscripts"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-extensions-api-impl","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-extensions-api-impl"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-extensions-api-impl-javadoc","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-extensions-api-impl-javadoc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-lib","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-lib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-restapi","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-restapi"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-setup","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-setup"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-setup-base","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-setup-base"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-setup-plugin-ovirt-engine","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-ovirt-engine"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-setup-plugin-ovirt-engine-common","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-ovirt-engine-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-setup-plugin-vmconsole-proxy-helper","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-vmconsole-proxy-helper"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-setup-plugin-websocket-proxy","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-setup-plugin-websocket-proxy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-tools","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-tools-backup","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-tools-backup"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-userportal","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-userportal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-vmconsole-proxy-helper","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-vmconsole-proxy-helper"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-webadmin-portal","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-webadmin-portal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"ovirt-engine-websocket-proxy","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/ovirt-engine-websocket-proxy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}},{"package":{"name":"rhevm","ecosystem":"Red Hat:rhev_manager:4","purl":"pkg:rpm/redhat/rhevm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.1.8.2-0.1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2017:3427.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:P/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:L"}]}