{"id":"RHSA-2019:4201","summary":"Red Hat Security Advisory: CloudForms 5.0.1 security, bug fix and enhancement update","modified":"2025-11-22T11:52:42Z","published":"2024-09-16T03:14:55Z","upstream":["CVE-2019-16892"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:4201"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_cloudforms/5.0/html/release_notes"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1713400"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1730066"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1747179"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767548"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767549"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767550"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767645"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767646"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767647"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767648"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767656"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767659"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767660"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767774"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767775"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767776"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767777"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767783"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767784"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767786"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767788"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767789"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767790"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767791"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767796"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767809"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767810"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767811"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767818"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767819"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767821"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767823"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767824"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767833"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767834"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767835"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767836"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767837"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767880"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767881"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767885"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767886"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767895"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767896"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1767901"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1768456"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1768517"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1768520"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1768525"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1768530"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1768576"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1768638"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1771298"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1771737"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1773666"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1773667"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1775684"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_4201.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-16892"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-16892"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-16892"}],"affected":[{"package":{"name":"cfme","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/cfme"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.11.1.2-1.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:4201.json"}},{"package":{"name":"cfme-amazon-smartstate","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/cfme-amazon-smartstate"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.11.1.2-1.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:4201.json"}},{"package":{"name":"cfme-appliance","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/cfme-appliance"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.11.1.2-1.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:4201.json"}},{"package":{"name":"cfme-appliance-common","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/cfme-appliance-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.11.1.2-1.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:4201.json"}},{"package":{"name":"cfme-appliance-tools","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/cfme-appliance-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.11.1.2-1.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:4201.json"}},{"package":{"name":"cfme-gemset","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/cfme-gemset"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.11.1.2-1.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:4201.json"}},{"package":{"name":"ovirt-ansible-hosted-engine-setup","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/ovirt-ansible-hosted-engine-setup"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.0.28-1.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:4201.json"}},{"package":{"name":"v2v-conversion-host","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/v2v-conversion-host"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.15.0-1.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:4201.json"}},{"package":{"name":"v2v-conversion-host-ansible","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/v2v-conversion-host-ansible"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.15.0-1.el8ev"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2019:4201.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}