{"id":"RHSA-2020:2480","summary":"Red Hat Security Advisory: CloudForms 5.0.6 security, bug fix and enhancement update","modified":"2026-03-20T10:02:47Z","published":"2024-09-18T04:12:38Z","upstream":["CVE-2019-16782"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:2480"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"ARTICLE","url":"https://access.redhat.com/documentation/en-us/red_hat_cloudforms/5.0/html/release_notes"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1529718"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1718846"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1719266"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1740405"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1746211"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1746860"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1760001"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1783511"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1789100"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1797706"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1805847"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1810406"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1815479"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1818172"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1819998"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1821842"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1824355"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1824846"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1827127"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1830305"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1830349"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1833362"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1835911"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1837410"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2480.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-16782"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-16782"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-16782"},{"type":"ARTICLE","url":"https://github.com/rack/rack/security/advisories/GHSA-hrqr-hxpp-chr3"}],"affected":[{"package":{"name":"ansible-runner","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/ansible-runner"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.4.6-1.el8ar"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2480.json"}},{"package":{"name":"cfme","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/cfme"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.11.6.0-1.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2480.json"}},{"package":{"name":"cfme-amazon-smartstate","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/cfme-amazon-smartstate"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.11.6.0-1.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2480.json"}},{"package":{"name":"cfme-appliance","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/cfme-appliance"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.11.6.0-1.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2480.json"}},{"package":{"name":"cfme-appliance-common","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/cfme-appliance-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.11.6.0-1.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2480.json"}},{"package":{"name":"cfme-appliance-tools","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/cfme-appliance-tools"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.11.6.0-1.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2480.json"}},{"package":{"name":"cfme-gemset","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/cfme-gemset"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:5.11.6.0-1.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2480.json"}},{"package":{"name":"libssh2","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/libssh2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.9.0-2.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2480.json"}},{"package":{"name":"libssh2-debuginfo","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/libssh2-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.9.0-2.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2480.json"}},{"package":{"name":"libssh2-debugsource","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/libssh2-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.9.0-2.el8cf"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2480.json"}},{"package":{"name":"python3-ansible-runner","ecosystem":"Red Hat:cloudforms_managementengine:5.11::el8","purl":"pkg:rpm/redhat/python3-ansible-runner"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.4.6-1.el8ar"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2020:2480.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}