Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Containers
  • Support Cases
  • Products & Services

    Products

    Support

    • Production Support
    • Development Support
    • Product Life Cycles

    Services

    • Consulting
    • Technical Account Management
    • Training & Certifications

    Documentation

    • Red Hat Enterprise Linux
    • Red Hat JBoss Enterprise Application Platform
    • Red Hat OpenStack Platform
    • Red Hat OpenShift Container Platform
    All Documentation

    Ecosystem Catalog

    • Red Hat Partner Ecosystem
    • Partner Resources
  • Tools

    Tools

    • Troubleshoot a product issue
    • Packages
    • Errata

    Customer Portal Labs

    • Configuration
    • Deployment
    • Security
    • Troubleshoot
    All labs

    Red Hat Insights

    Increase visibility into IT operations to detect and resolve technical issues before they impact your business.

    Learn More
    Go to Insights
  • Security

    Red Hat Product Security Center

    Engage with our Red Hat Product Security team, access security updates, and ensure your environments are not exposed to any known security vulnerabilities.

    Product Security Center

    Security Updates

    • Security Advisories
    • Red Hat CVE Database
    • Security Labs

    Keep your systems secure with Red Hat's specialized responses to security vulnerabilities.

    View Responses

    Resources

    • Security Blog
    • Security Measurement
    • Severity Ratings
    • Backporting Policies
    • Product Signing (GPG) Keys
  • Community

    Customer Portal Community

    • Discussions
    • Private Groups
    Community Activity

    Customer Events

    • Red Hat Convergence
    • Red Hat Summit

    Stories

    • Red Hat Subscription Value
    • You Asked. We Acted.
    • Open Source Communities
Or troubleshoot an issue.

Select Your Language

  • English
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Virtualization
  • Red Hat Identity Management
  • Red Hat Directory Server
  • Red Hat Certificate System
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Update Infrastructure
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat CloudForms
  • Red Hat OpenStack Platform
  • Red Hat OpenShift Container Platform
  • Red Hat OpenShift Data Science
  • Red Hat OpenShift Online
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat Single Sign On
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Thorntail
  • Red Hat build of Eclipse Vert.x
  • Red Hat build of OpenJDK
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Integration
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
  • Red Hat JBoss Data Virtualization
  • Red Hat Process Automation
  • Red Hat Process Automation Manager
  • Red Hat Decision Manager
All Products
Red Hat Product Errata RHSA-2020:4127 - Security Advisory
Issued:
2020-09-30
Updated:
2020-09-30

RHSA-2020:4127 - Security Advisory

  • Overview
  • Updated Packages

Synopsis

Important: Satellite 6.7.4 Async Bug Fix Update

Type/Severity

Security Advisory: Important

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated Satellite 6.7 packages that fix several bugs are now available for Red Hat Satellite.

Description

Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.

Security Fix(es):

  • foreman: unauthorized cache read on RPM-based installations through local user (CVE-2020-14334)

This update fixes the following bugs:

1305773 - Changing Content View of a Content Host needs to better inform the user around client needs
1666324 - The Host configuration chart shows 100% even if few hosts are not in sync or reporting.
1781875 - Red Hat Inventory Uploads does not use proxy
1793416 - Searching for task requires clicking Search twice to get correct results
1816464 - Decreased performance in GenerateApplicability in 6.6
1822564 - vmrc not working 6.7
1823396 - Hosts are rejected due to mismatch of metadata.json and actual hosts included in satellite inventory report
1829412 - Unable to search by value of certain Hostgroup parameter
1853466 - RH Cloud -> Insights page does not report error when rh_cloud_token setting is not set
1854711 - Sync Plan fails with 'uninitialized constant Actions::Foreman::Exception'
1858307 - CVE-2020-14334 foreman: unauthorized cache read on RPM-based installations through local user [rhn_satellite_6.7]
1862260 - Default job templates are not locked
1867258 - After upgrading to 6.7 and promoting content, Capsule sync is extremely slow

Users of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For detailed instructions how to apply this update, refer to:

https://access.redhat.com/documentation/en-us/red_hat_satellite/6.7/html/upgrading_and_updating_red_hat_satellite/updating_satellite_server_capsule_server_and_content_hosts

Affected Products

  • Red Hat Satellite 6.7 x86_64
  • Red Hat Satellite Capsule 6.7 x86_64

Fixes

  • BZ - 1305773 - Changing Content View of a Content Host needs to better inform the user around client needs
  • BZ - 1666324 - The Host configuration chart shows 100% even if few hosts are not in sync or reporting.
  • BZ - 1781875 - Red Hat Inventory Uploads does not use proxy
  • BZ - 1793416 - Searching for task requires clicking Search twice to get correct results
  • BZ - 1816464 - Decreased performance in GenerateApplicability in 6.6
  • BZ - 1822564 - vmrc not working 6.7
  • BZ - 1823396 - Hosts are rejected due to mismatch of metadata.json and actual hosts included in satellite inventory report
  • BZ - 1829412 - Unable to search by value of certain Hostgroup parameter
  • BZ - 1853466 - RH Cloud -> Insights page does not report error when rh_cloud_token setting is not set
  • BZ - 1854711 - Sync Plan fails with 'uninitialized constant Actions::Foreman::Exception'
  • BZ - 1858284 - CVE-2020-14334 foreman: unauthorized cache read on RPM-based installations through local user
  • BZ - 1862260 - Default job templates are not locked
  • BZ - 1867258 - After upgrading to 6.7 and promoting content, Capsule sync is extremely slow

CVEs

  • CVE-2020-14334

References

  • https://access.redhat.com/security/updates/classification/#important
Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Satellite 6.7

SRPM
foreman-1.24.1.28-3.el7sat.src.rpm SHA-256: 186d6575170d0b1b5a4ab1d9095fd931d97e290eea924f4c341078d8f3727c80
foreman-proxy-1.24.1-3.el7sat.src.rpm SHA-256: 910145603ba8d5dcc9c03ec533d1791442ef1734de9d2b9fa8a8571c8b4c97d6
pulp-2.21.0.4-1.el7sat.src.rpm SHA-256: 80529a13d09c46fa0c1aa6f308ab1c1cb794808fcdb0f561ff2d84aa7f63a4c9
satellite-6.7.4-1.el7sat.src.rpm SHA-256: f266a883f02da0b37ffb203b9bb93f184a94218261300c6bd4de42083b696669
tfm-rubygem-foreman-tasks-0.17.5.8-1.el7sat.src.rpm SHA-256: e540a1c68c9a80b78c5a5dae6ac38d55c3eb2b1c4f8191d106f5a5c846adec83
tfm-rubygem-foreman_ansible-4.0.3.8-1.el7sat.src.rpm SHA-256: 973ca78f55ed458628f677c44ce92dfc819f3e4d9daa788fa9faaf025c971242
tfm-rubygem-foreman_openscap-2.0.2.1-1.el7sat.src.rpm SHA-256: f2297e8cbb678617dea599c5b5b0de1372c92447f62291c09ea803d9c9ac08f8
tfm-rubygem-foreman_rh_cloud-1.0.10-1.el7sat.src.rpm SHA-256: 5e4be88b910b8b7f32f4d5bf101ec1fb64553acb0281bdba6afd7901685a9902
tfm-rubygem-katello-3.14.0.31-1.el7sat.src.rpm SHA-256: f4ef373d2347d3835611c4c4e67c7ea95b64e35bba269b5688f7c7b73cd5cf12
x86_64
foreman-1.24.1.28-3.el7sat.noarch.rpm SHA-256: 54637506b6d8679f850cf34877442306adbbf28de810c629f98158a3cb912379
foreman-cli-1.24.1.28-3.el7sat.noarch.rpm SHA-256: 56352a77a16c8eea5f11016403d741dcff11948e218130bc222ebd5af1b41644
foreman-debug-1.24.1.28-3.el7sat.noarch.rpm SHA-256: 154e010b45252dc93184d94dbefaabced796a01c182567d76d7c608d5f0e5c1a
foreman-ec2-1.24.1.28-3.el7sat.noarch.rpm SHA-256: a5007a5a5305805e74a3f4620eb32f2a7eac0e465918deafd00a8ad21693eebf
foreman-gce-1.24.1.28-3.el7sat.noarch.rpm SHA-256: b14314982818afe9b915d9abc9bdd386c7ef0112a2da10b870c5aec47c13f3ef
foreman-journald-1.24.1.28-3.el7sat.noarch.rpm SHA-256: 38f142b924a86d5bf96ee40fd9189206df7bf85fdd4b419cdb9d6db123592fb1
foreman-libvirt-1.24.1.28-3.el7sat.noarch.rpm SHA-256: ce5a6f5f4e1369069f9523d6049b8f7c39e066fba0bf792cca14ce3beb1d5eca
foreman-openstack-1.24.1.28-3.el7sat.noarch.rpm SHA-256: b9f92cdd4811110323d894c7127e2424da21240d8bcf633c8bde303e16a74f18
foreman-ovirt-1.24.1.28-3.el7sat.noarch.rpm SHA-256: 1babe147c6c018dfaed4626502eca1871c9388c60603fc0e18ccbbce202b41a1
foreman-postgresql-1.24.1.28-3.el7sat.noarch.rpm SHA-256: 48e8bd72f0159fa20157d5a2f132bac731445d4fe58b22a9b5db254e04bb46ac
foreman-proxy-1.24.1-3.el7sat.noarch.rpm SHA-256: 79862ab72d76ed3dc0334ff2b3992f28de783254d514e57355ad103b0b6ff1a7
foreman-proxy-journald-1.24.1-3.el7sat.noarch.rpm SHA-256: 9cc477576891d4290884a95d72965eaba71a8f0b302ede0dfe74bbfbf3b54a82
foreman-rackspace-1.24.1.28-3.el7sat.noarch.rpm SHA-256: 14b07e2a349f3cf2e907eb106b50c69b70930eef135e6eda7e680b57b341bc9b
foreman-telemetry-1.24.1.28-3.el7sat.noarch.rpm SHA-256: 099aaf3bb62050a3e19a2846137b5907b0ae7126b0edabb07f12361bfb9867dc
foreman-vmware-1.24.1.28-3.el7sat.noarch.rpm SHA-256: 7a3fdf463c5b6faadb2b2048c57b3d6d9f8ffdb5b1a103eba94f705a96bfd424
pulp-admin-client-2.21.0.4-1.el7sat.noarch.rpm SHA-256: ad43792452fbd1e56bad47672adc635ee54e81f84213e4bec8e0e3357b2d1568
pulp-maintenance-2.21.0.4-1.el7sat.noarch.rpm SHA-256: fce0d3a97a74f09120b8a47e284f1c233691a44969503a2c9757af5ef480272a
pulp-selinux-2.21.0.4-1.el7sat.noarch.rpm SHA-256: 5a03dc1d540120a55eae0a235a0d810e849c91217c1549df80d5ce88c4c041f8
pulp-server-2.21.0.4-1.el7sat.noarch.rpm SHA-256: 4ff87a835add154dd4e7f45a73508b741e1d83c3f783dd69d64cecc4564c134f
python-pulp-bindings-2.21.0.4-1.el7sat.noarch.rpm SHA-256: e5655a8d46d1d61dc46f1fad2a893a263f9853a65d9d918b173fde9e940a5e4d
python-pulp-client-lib-2.21.0.4-1.el7sat.noarch.rpm SHA-256: 2ea6f5ab75a57036bba7cc8dc31799034d3085ca2d83ede3d04d8b34dfdec07d
python-pulp-common-2.21.0.4-1.el7sat.noarch.rpm SHA-256: dc3df75efa86757dec71fc1f4ae6acc8be3e0aa49b7ab1f203c5002c467d000d
python-pulp-oid_validation-2.21.0.4-1.el7sat.noarch.rpm SHA-256: 624e6ac9fc0b45f6e9495583b091243bc02327b4412c00eefa8d70b51ccb59f0
python-pulp-repoauth-2.21.0.4-1.el7sat.noarch.rpm SHA-256: 3eb005becb2ec6e6f1415ae62216d50b570e3db0c6b14eb43d81ff6bf786ec3f
python-pulp-streamer-2.21.0.4-1.el7sat.noarch.rpm SHA-256: b9168faac62c68d0269640921b5b16f89d64136e21f6bf46949562f39fbb3fcb
satellite-6.7.4-1.el7sat.noarch.rpm SHA-256: b899411a0deef1d32f428adc778a7fe26e505eace6b3d038b92cf3d03441077d
satellite-capsule-6.7.4-1.el7sat.noarch.rpm SHA-256: f2c27313e794e628d551969ae9c802e2b717187fdc66e2193ebb466977cae17c
satellite-cli-6.7.4-1.el7sat.noarch.rpm SHA-256: ba1535006b7072908aec42f5fd330e8b31da82ac836d422e9612628fdeae5a87
satellite-common-6.7.4-1.el7sat.noarch.rpm SHA-256: 5b9e940dc1fc7e13bf409f6b8d03eeb0262ed450d45e19455be2cc0a6924a4cb
satellite-debug-tools-6.7.4-1.el7sat.noarch.rpm SHA-256: 3b839b69f7e138452a5f3b4c542dd0eba56403fce0c105bdee7134c333abfefc
tfm-rubygem-foreman-tasks-0.17.5.8-1.el7sat.noarch.rpm SHA-256: 0d0abaa7293be4181d77567b048a81f077332d48638525e51baf3a493410bac5
tfm-rubygem-foreman_ansible-4.0.3.8-1.el7sat.noarch.rpm SHA-256: 62e2bd6787a0041f4f69d7f7beca258c2de5bf3aec05e45b26c54cb9da33b920
tfm-rubygem-foreman_openscap-2.0.2.1-1.el7sat.noarch.rpm SHA-256: e8d5006b916cdc6a88514015134b943672f62e4352c24ec36eebf2773adf8505
tfm-rubygem-foreman_rh_cloud-1.0.10-1.el7sat.noarch.rpm SHA-256: 8fe977547f6d384f8037fe824b59e28e834e70575c11541c5365dec4bfce9838
tfm-rubygem-katello-3.14.0.31-1.el7sat.noarch.rpm SHA-256: 0eca5c296a3a689e70eabf1d0cb4a5579da09dd6e41f8af8e9238ffc39eba8f7

Red Hat Satellite Capsule 6.7

SRPM
foreman-1.24.1.28-3.el7sat.src.rpm SHA-256: 186d6575170d0b1b5a4ab1d9095fd931d97e290eea924f4c341078d8f3727c80
foreman-proxy-1.24.1-3.el7sat.src.rpm SHA-256: 910145603ba8d5dcc9c03ec533d1791442ef1734de9d2b9fa8a8571c8b4c97d6
pulp-2.21.0.4-1.el7sat.src.rpm SHA-256: 80529a13d09c46fa0c1aa6f308ab1c1cb794808fcdb0f561ff2d84aa7f63a4c9
satellite-6.7.4-1.el7sat.src.rpm SHA-256: f266a883f02da0b37ffb203b9bb93f184a94218261300c6bd4de42083b696669
x86_64
foreman-debug-1.24.1.28-3.el7sat.noarch.rpm SHA-256: 154e010b45252dc93184d94dbefaabced796a01c182567d76d7c608d5f0e5c1a
foreman-proxy-1.24.1-3.el7sat.noarch.rpm SHA-256: 79862ab72d76ed3dc0334ff2b3992f28de783254d514e57355ad103b0b6ff1a7
foreman-proxy-journald-1.24.1-3.el7sat.noarch.rpm SHA-256: 9cc477576891d4290884a95d72965eaba71a8f0b302ede0dfe74bbfbf3b54a82
pulp-admin-client-2.21.0.4-1.el7sat.noarch.rpm SHA-256: ad43792452fbd1e56bad47672adc635ee54e81f84213e4bec8e0e3357b2d1568
pulp-maintenance-2.21.0.4-1.el7sat.noarch.rpm SHA-256: fce0d3a97a74f09120b8a47e284f1c233691a44969503a2c9757af5ef480272a
pulp-nodes-child-2.21.0.4-1.el7sat.noarch.rpm SHA-256: 85523af9d7b45d5936085e31aa88052eac165089f9dde03bc1049cf82897c2fd
pulp-nodes-common-2.21.0.4-1.el7sat.noarch.rpm SHA-256: 49bfbe7690a02c485665c2a43ced044bd5a751db2e3727be5a345c31064e4c41
pulp-nodes-parent-2.21.0.4-1.el7sat.noarch.rpm SHA-256: fd90cb1d3f5d3ea9e0b6a57e574aa28e80e9544948de316d99284dd8a8bd4645
pulp-selinux-2.21.0.4-1.el7sat.noarch.rpm SHA-256: 5a03dc1d540120a55eae0a235a0d810e849c91217c1549df80d5ce88c4c041f8
pulp-server-2.21.0.4-1.el7sat.noarch.rpm SHA-256: 4ff87a835add154dd4e7f45a73508b741e1d83c3f783dd69d64cecc4564c134f
python-pulp-agent-lib-2.21.0.4-1.el7sat.noarch.rpm SHA-256: 51e05550fab378372edba1efadbeb5da1893669b764b7949d807f4e2bf399a26
python-pulp-bindings-2.21.0.4-1.el7sat.noarch.rpm SHA-256: e5655a8d46d1d61dc46f1fad2a893a263f9853a65d9d918b173fde9e940a5e4d
python-pulp-client-lib-2.21.0.4-1.el7sat.noarch.rpm SHA-256: 2ea6f5ab75a57036bba7cc8dc31799034d3085ca2d83ede3d04d8b34dfdec07d
python-pulp-common-2.21.0.4-1.el7sat.noarch.rpm SHA-256: dc3df75efa86757dec71fc1f4ae6acc8be3e0aa49b7ab1f203c5002c467d000d
python-pulp-oid_validation-2.21.0.4-1.el7sat.noarch.rpm SHA-256: 624e6ac9fc0b45f6e9495583b091243bc02327b4412c00eefa8d70b51ccb59f0
python-pulp-repoauth-2.21.0.4-1.el7sat.noarch.rpm SHA-256: 3eb005becb2ec6e6f1415ae62216d50b570e3db0c6b14eb43d81ff6bf786ec3f
python-pulp-streamer-2.21.0.4-1.el7sat.noarch.rpm SHA-256: b9168faac62c68d0269640921b5b16f89d64136e21f6bf46949562f39fbb3fcb
satellite-capsule-6.7.4-1.el7sat.noarch.rpm SHA-256: f2c27313e794e628d551969ae9c802e2b717187fdc66e2193ebb466977cae17c
satellite-common-6.7.4-1.el7sat.noarch.rpm SHA-256: 5b9e940dc1fc7e13bf409f6b8d03eeb0262ed450d45e19455be2cc0a6924a4cb
satellite-debug-tools-6.7.4-1.el7sat.noarch.rpm SHA-256: 3b839b69f7e138452a5f3b4c542dd0eba56403fce0c105bdee7134c333abfefc

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

About

  • Red Hat Subscription Value
  • About Red Hat
  • Red Hat Jobs
Copyright © 2023 Red Hat, Inc.
  • Privacy Statement
  • Customer Portal Terms of Use
  • All Policies and Guidelines
Red Hat Summit
Twitter