{"id":"RHSA-2019:2466","summary":"Red Hat Security Advisory: CloudForms 4.7.8 security, bug fix and enhancement update","modified":"2026-02-21T10:03:15Z","published":"2024-09-16T02:45:06Z","upstream":["CVE-2019-10159"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:2466"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_cloudforms/4.7/html/release_notes"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1703461"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1703474"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1718080"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1723833"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1726313"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1727443"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1728270"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1728403"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1728706"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1728707"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1728708"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1728889"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1731157"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1731237"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1731977"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1731991"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1731992"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1732117"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1732156"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1733290"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1733375"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1734122"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_2466.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-10159"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-10159"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-10159"}],"affected":[{"package":{"name":"ansible-tower","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/ansible-tower"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1-1.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"ansible-tower-server","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/ansible-tower-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1-1.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"ansible-tower-setup","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/ansible-tower-setup"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1-1.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"ansible-tower-ui","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/ansible-tower-ui"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1-1.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"ansible-tower-venv-ansible","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/ansible-tower-venv-ansible"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1-1.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"ansible-tower-venv-tower","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/ansible-tower-venv-tower"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.5.1-1.el7at"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"cfme","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/cfme"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.10.8.0-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"cfme-amazon-smartstate","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/cfme-amazon-smartstate"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.10.8.0-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"cfme-appliance","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/cfme-appliance"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.10.8.0-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"cfme-appliance-common","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/cfme-appliance-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.10.8.0-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"cfme-appliance-debuginfo","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/cfme-appliance-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.10.8.0-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"cfme-appliance-tools","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/cfme-appliance-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.10.8.0-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"cfme-debuginfo","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/cfme-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.10.8.0-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"cfme-gemset","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/cfme-gemset"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.10.8.0-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"cfme-gemset-debuginfo","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/cfme-gemset-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.10.8.0-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"rubygem-nokogiri","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/rubygem-nokogiri"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.8.5-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"rubygem-nokogiri-debuginfo","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/rubygem-nokogiri-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.8.5-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}},{"package":{"name":"rubygem-nokogiri-doc","ecosystem":"Red Hat:cloudforms_managementengine:5.10::el7","purl":"pkg:rpm/redhat/rubygem-nokogiri-doc"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.8.5-1.el7cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:2466.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N"}]}