{"id":"RHSA-2018:3816","summary":"Red Hat Security Advisory: CloudForms 4.6.6 security, bug fix and enhancement update","modified":"2026-02-21T10:02:29Z","published":"2024-09-13T16:54:07Z","upstream":["CVE-2018-1053","CVE-2018-1058","CVE-2018-10915","CVE-2018-10925"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2018:3816"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_cloudforms/4.6/html/release_notes"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1539619"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1547044"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1609891"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1610547"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1612619"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1618836"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1623562"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1634809"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1635034"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1635255"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1635759"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1635788"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1638501"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1639351"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1639353"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1639364"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1640194"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1640258"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1640629"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1640631"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1641771"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1643042"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1643261"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1643263"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1643539"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1643959"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1644410"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1645198"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1645204"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646435"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646561"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646564"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646571"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646599"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646604"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646605"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646606"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646613"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646629"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1646646"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1647056"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1647108"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1647188"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1647489"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1648674"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1648948"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1648955"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1648991"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1649033"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1649380"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1649419"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1650691"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1651291"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1651347"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1651391"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1653417"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1653710"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1654436"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1654463"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1655081"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1655143"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1655773"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1656168"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1656169"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3816.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-1053"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-1053"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-1053"},{"type":"ARTICLE","url":"https://www.postgresql.org/about/news/1829/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-1058"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-1058"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-1058"},{"type":"ARTICLE","url":"https://www.postgresql.org/about/news/1834/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-10915"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-10915"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-10915"},{"type":"ARTICLE","url":"https://www.postgresql.org/about/news/1878/"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2018-10925"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2018-10925"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2018-10925"}],"affected":[{"package":{"name":"cfme","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/cfme"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.9.6.5-3.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"cfme-amazon-smartstate","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/cfme-amazon-smartstate"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.9.6.5-2.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"cfme-appliance","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/cfme-appliance"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.9.6.5-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"cfme-appliance-common","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/cfme-appliance-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.9.6.5-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"cfme-appliance-debuginfo","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/cfme-appliance-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.9.6.5-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"cfme-appliance-tools","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/cfme-appliance-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.9.6.5-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"cfme-debuginfo","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/cfme-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.9.6.5-3.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"cfme-gemset","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/cfme-gemset"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.9.6.5-2.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"cfme-gemset-debuginfo","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/cfme-gemset-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.9.6.5-2.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"dbus-api-service","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/dbus-api-service"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.1-3.1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"httpd-configmap-generator","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/httpd-configmap-generator"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:0.2.2-1.2.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"postgresql96","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/postgresql96"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.6.10-1PGDG.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"postgresql96-contrib","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/postgresql96-contrib"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.6.10-1PGDG.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"postgresql96-debuginfo","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/postgresql96-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.6.10-1PGDG.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"postgresql96-devel","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/postgresql96-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.6.10-1PGDG.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"postgresql96-docs","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/postgresql96-docs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.6.10-1PGDG.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"postgresql96-libs","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/postgresql96-libs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.6.10-1PGDG.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"postgresql96-plperl","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/postgresql96-plperl"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.6.10-1PGDG.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"postgresql96-plpython","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/postgresql96-plpython"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.6.10-1PGDG.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"postgresql96-pltcl","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/postgresql96-pltcl"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.6.10-1PGDG.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"postgresql96-server","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/postgresql96-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.6.10-1PGDG.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}},{"package":{"name":"postgresql96-test","ecosystem":"Red Hat:cloudforms_managementengine:5.9::el7","purl":"pkg:rpm/redhat/postgresql96-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:9.6.10-1PGDG.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2018:3816.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}