RHEL 7 : Red Hat OpenShift Container Platform 3.7 (RHSA-2017:3188)

medium Nessus Plugin ID 119389

Language:

Synopsis

The remote Red Hat host is missing a security update.

Description

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:3188 advisory.

Red Hat OpenShift Container Platform is the company's cloud computing Platform-as-a-Service (PaaS) solution designed for on-premise or private cloud deployments.

The OpenShift Container Platform 3.7 Release Notes, link located within the reference section, provides information about new features, bug fixes, and known issues.

This advisory contains the RPM packages for this release. An advisory for the container images for this release is available at: https://access.redhat.com/errata/RHEA-2017:3187.

Security Fix(es):

* An attacker with knowledge of the given name used to authenticate and access Elasticsearch can later access it without the token, bypassing authentication. This attack also requires that the Elasticsearch be configured with an external route, and the data accessed is limited to the indices. (CVE-2017-12195)

Red Hat would like to thank Rich Megginson for reporting this issue.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected packages.

Plugin Details

Severity: Medium

ID: 119389

File Name: redhat-RHSA-2017-3188.nasl

Version: 1.8

Type: local

Agent: unix

Family: Red Hat Local Security Checks

Published: 12/4/2018

Updated: 6/3/2024

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 2.5

Vendor

Vendor Severity: Moderate

CVSS v2

Risk Factor: Medium

Base Score: 5.8

Temporal Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N

CVSS Score Source: CVE-2017-12195

CVSS v3

Risk Factor: Medium

Base Score: 4.8

Temporal Score: 4.2

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-git-client, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-cluster-capacity, p-cpe:/a:redhat:enterprise_linux:rubygem-faraday-doc, p-cpe:/a:redhat:enterprise_linux:http-parser-devel, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-sdn-ovs, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-web, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-service-catalog, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pipeline-input-step, p-cpe:/a:redhat:enterprise_linux:nodejs-merge-descriptors, p-cpe:/a:redhat:enterprise_linux:rubygem-multi_json, p-cpe:/a:redhat:enterprise_linux:rubygem-systemd-journal, p-cpe:/a:redhat:enterprise_linux:nodejs-bytes, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-git, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-template-service-broker, p-cpe:/a:redhat:enterprise_linux:mediawiki123-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-stringstream, p-cpe:/a:redhat:enterprise_linux:nodejs-content-type, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-kubernetes, p-cpe:/a:redhat:enterprise_linux:rubygem-tzinfo-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-http-signature, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-kubernetes_metadata_filter, p-cpe:/a:redhat:enterprise_linux:openshift-external-storage-snapshot-controller, p-cpe:/a:redhat:enterprise_linux:python-passlib, p-cpe:/a:redhat:enterprise_linux:nodejs-inherits, p-cpe:/a:redhat:enterprise_linux:nodejs-getobject, p-cpe:/a:redhat:enterprise_linux:nodejs-graceful-fs, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-github, p-cpe:/a:redhat:enterprise_linux:nodejs-media-typer, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-workflow-api, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-display-url, p-cpe:/a:redhat:enterprise_linux:nodejs-inflight, p-cpe:/a:redhat:enterprise_linux:rubygem-elasticsearch-transport-doc, p-cpe:/a:redhat:enterprise_linux:rubygem-elasticsearch-api, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-remote-syslog-doc, p-cpe:/a:redhat:enterprise_linux:rubygem-proxifier, p-cpe:/a:redhat:enterprise_linux:nodejs-promise, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-rewrite-tag-filter-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-longest, p-cpe:/a:redhat:enterprise_linux:rubygem-mime-types-data-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-ipaddr.js, p-cpe:/a:redhat:enterprise_linux:nodejs-forwarded, p-cpe:/a:redhat:enterprise_linux:nodejs-abbrev, p-cpe:/a:redhat:enterprise_linux:nodejs-eventemitter2, p-cpe:/a:redhat:enterprise_linux:nodejs-escape-string-regexp, p-cpe:/a:redhat:enterprise_linux:nodejs-destroy, p-cpe:/a:redhat:enterprise_linux:rubygem-elasticsearch-api-doc, p-cpe:/a:redhat:enterprise_linux:apb-container-scripts, p-cpe:/a:redhat:enterprise_linux:nodejs-basic-auth, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-display-url-api, p-cpe:/a:redhat:enterprise_linux:rubygem-elasticsearch, p-cpe:/a:redhat:enterprise_linux:nodejs-file-sync-cmp, p-cpe:/a:redhat:enterprise_linux:nodejs-yallist, p-cpe:/a:redhat:enterprise_linux:fb303-devel, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-token-macro, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-metrics, p-cpe:/a:redhat:enterprise_linux:nodejs-aws-sign2, p-cpe:/a:redhat:enterprise_linux:nodejs-argparse, p-cpe:/a:redhat:enterprise_linux:nodejs-unc-path-regex, p-cpe:/a:redhat:enterprise_linux:rubygem-lru_redux, p-cpe:/a:redhat:enterprise_linux:mysql-apb-role, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-viaq_data_model, p-cpe:/a:redhat:enterprise_linux:nodejs-y18n, p-cpe:/a:redhat:enterprise_linux:python-dictdiffer, p-cpe:/a:redhat:enterprise_linux:nodejs-fresh, p-cpe:/a:redhat:enterprise_linux:rubygem-tzinfo, p-cpe:/a:redhat:enterprise_linux:python2-ruamel-ordereddict, p-cpe:/a:redhat:enterprise_linux:rubygem-cool.io, p-cpe:/a:redhat:enterprise_linux:nodejs-grunt-legacy-util, p-cpe:/a:redhat:enterprise_linux:rubygem-mime-types-data, p-cpe:/a:redhat:enterprise_linux:rubygem-unf-doc, p-cpe:/a:redhat:enterprise_linux:fb303, p-cpe:/a:redhat:enterprise_linux:mediawiki123, p-cpe:/a:redhat:enterprise_linux:nodejs-boom, p-cpe:/a:redhat:enterprise_linux:nodejs-http-errors, p-cpe:/a:redhat:enterprise_linux:nodejs-path-is-absolute, p-cpe:/a:redhat:enterprise_linux:nodejs-mkdirp, p-cpe:/a:redhat:enterprise_linux:nodejs-ansi-regex, p-cpe:/a:redhat:enterprise_linux:nodejs-ms, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-workflow-scm-step, p-cpe:/a:redhat:enterprise_linux:nodejs-os-locale, p-cpe:/a:redhat:enterprise_linux:rubygem-domain_name-doc, p-cpe:/a:redhat:enterprise_linux:python-thrift, p-cpe:/a:redhat:enterprise_linux:nodejs-less, p-cpe:/a:redhat:enterprise_linux:python-typing, p-cpe:/a:redhat:enterprise_linux:libuv-static, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-ssh-credentials, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-mailer, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-script-security, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pipeline-model-api, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-jackson2-api, p-cpe:/a:redhat:enterprise_linux:nodejs-concat-stream, p-cpe:/a:redhat:enterprise_linux:nodejs-uid2, p-cpe:/a:redhat:enterprise_linux:python2-ruamel-yaml, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-mapdb-api, p-cpe:/a:redhat:enterprise_linux:nodejs-node-uuid, p-cpe:/a:redhat:enterprise_linux:python-paramiko, p-cpe:/a:redhat:enterprise_linux:fluentd-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-is-property, p-cpe:/a:redhat:enterprise_linux:nodejs-range-parser, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-workflow-multibranch, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-matrix-project, p-cpe:/a:redhat:enterprise_linux:python2-kubernetes, p-cpe:/a:redhat:enterprise_linux:python-mock, p-cpe:/a:redhat:enterprise_linux:nodejs-repeating, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-record-modifier, p-cpe:/a:redhat:enterprise_linux:rubygem-uuidtools-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-concat-map, p-cpe:/a:redhat:enterprise_linux:cockpit, p-cpe:/a:redhat:enterprise_linux:http-parser, p-cpe:/a:redhat:enterprise_linux:libthrift-javadoc, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-plain-credentials, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pipeline-stage-step, p-cpe:/a:redhat:enterprise_linux:fluentd, p-cpe:/a:redhat:enterprise_linux:nodejs-colors, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-jquery-detached, p-cpe:/a:redhat:enterprise_linux:nodejs-devel, p-cpe:/a:redhat:enterprise_linux:nodejs-request, p-cpe:/a:redhat:enterprise_linux:python-ruamel-yaml, p-cpe:/a:redhat:enterprise_linux:golang-github-openshift-oauth-proxy, p-cpe:/a:redhat:enterprise_linux:rubygem-excon-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-finalhandler, p-cpe:/a:redhat:enterprise_linux:mariadb-apb-role, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-workflow-basic-steps, p-cpe:/a:redhat:enterprise_linux:python-ruamel-ordereddict, p-cpe:/a:redhat:enterprise_linux:python2-google-auth, p-cpe:/a:redhat:enterprise_linux:nodejs-indent-string, p-cpe:/a:redhat:enterprise_linux:python-py, p-cpe:/a:redhat:enterprise_linux:golang-github-openshift-prometheus-alert-buffer, p-cpe:/a:redhat:enterprise_linux:prometheus-promu, p-cpe:/a:redhat:enterprise_linux:nodejs-openshift-auth-proxy, p-cpe:/a:redhat:enterprise_linux:nodejs-errno, p-cpe:/a:redhat:enterprise_linux:jenkins-1, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-elasticsearch, p-cpe:/a:redhat:enterprise_linux:rubygem-tzinfo-data, p-cpe:/a:redhat:enterprise_linux:thrift-devel, p-cpe:/a:redhat:enterprise_linux:python-kubernetes, p-cpe:/a:redhat:enterprise_linux:libuv-devel, p-cpe:/a:redhat:enterprise_linux:python-fb303, p-cpe:/a:redhat:enterprise_linux:nodejs-grunt-contrib-less, p-cpe:/a:redhat:enterprise_linux:nodejs-right-align, p-cpe:/a:redhat:enterprise_linux:thrift, p-cpe:/a:redhat:enterprise_linux:nodejs-raw-body, p-cpe:/a:redhat:enterprise_linux:atomic-openshift, p-cpe:/a:redhat:enterprise_linux:cri-o, p-cpe:/a:redhat:enterprise_linux:rubygem-excon, p-cpe:/a:redhat:enterprise_linux:rubygem-mime-types-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-has-flag, p-cpe:/a:redhat:enterprise_linux:nodejs-findup-sync, p-cpe:/a:redhat:enterprise_linux:nodejs-hawk, p-cpe:/a:redhat:enterprise_linux:python2-typing, p-cpe:/a:redhat:enterprise_linux:rubygem-http-form_data-doc, p-cpe:/a:redhat:enterprise_linux:rubygem-resolve-hostname, p-cpe:/a:redhat:enterprise_linux:python-string_utils, p-cpe:/a:redhat:enterprise_linux:elastic-curator, p-cpe:/a:redhat:enterprise_linux:nodejs-accepts, p-cpe:/a:redhat:enterprise_linux:openshift-ansible-playbooks, p-cpe:/a:redhat:enterprise_linux:ansible-kubernetes-modules, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-ace-editor, p-cpe:/a:redhat:enterprise_linux:rubygem-unf_ext, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-workflow-support, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-workflow-remote-loader, p-cpe:/a:redhat:enterprise_linux:golang-github-prometheus-promu, p-cpe:/a:redhat:enterprise_linux:nodejs-proxy-addr, p-cpe:/a:redhat:enterprise_linux:rubygem-unf, p-cpe:/a:redhat:enterprise_linux:nodejs-array-flatten, p-cpe:/a:redhat:enterprise_linux:nodejs-brace-expansion, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-openshift-login, p-cpe:/a:redhat:enterprise_linux:openshift-ansible, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-handlebars, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pipeline-utility-steps, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-structs, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-i18n, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-mercurial, p-cpe:/a:redhat:enterprise_linux:nodejs-form-data, p-cpe:/a:redhat:enterprise_linux:rubygem-systemd-journal-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-resolve, p-cpe:/a:redhat:enterprise_linux:nodejs-amdefine, p-cpe:/a:redhat:enterprise_linux:nodejs-invert-kv, p-cpe:/a:redhat:enterprise_linux:nodejs-morgan, p-cpe:/a:redhat:enterprise_linux:nodejs-utils-merge, p-cpe:/a:redhat:enterprise_linux:python2-string_utils, p-cpe:/a:redhat:enterprise_linux:rubygem-i18n-doc, p-cpe:/a:redhat:enterprise_linux:rubygem-http, p-cpe:/a:redhat:enterprise_linux:rubygem-syslog_protocol-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-is-relative, p-cpe:/a:redhat:enterprise_linux:apb-base-scripts, p-cpe:/a:redhat:enterprise_linux:nodejs-sntp, p-cpe:/a:redhat:enterprise_linux:rubygem-docker-api, p-cpe:/a:redhat:enterprise_linux:nodejs-coffee-script, p-cpe:/a:redhat:enterprise_linux:openshift-ansible-roles, p-cpe:/a:redhat:enterprise_linux:rubygem-minitest-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-passport-oauth2, p-cpe:/a:redhat:enterprise_linux:nodejs-etag, p-cpe:/a:redhat:enterprise_linux:nodejs-camelcase, p-cpe:/a:redhat:enterprise_linux:nodejs-asn1, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-elasticsearch-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-http-proxy, p-cpe:/a:redhat:enterprise_linux:nodejs-delayed-stream, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-workflow-job, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-docker_metadata_filter, p-cpe:/a:redhat:enterprise_linux:python-httplib2, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-config, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-scm-api, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-descheduler, p-cpe:/a:redhat:enterprise_linux:nodejs-wordwrap, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-workflow-step-api, p-cpe:/a:redhat:enterprise_linux:nodejs-tunnel-agent, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean, p-cpe:/a:redhat:enterprise_linux:nodejs-bl, p-cpe:/a:redhat:enterprise_linux:nodejs-meow, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-kubernetes_metadata_filter-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-balanced-match, p-cpe:/a:redhat:enterprise_linux:nodejs-packaging, p-cpe:/a:redhat:enterprise_linux:nodejs-has-color, p-cpe:/a:redhat:enterprise_linux:nodejs-body-parser, p-cpe:/a:redhat:enterprise_linux:ansible-doc, p-cpe:/a:redhat:enterprise_linux:rubygem-tzinfo-data-doc, p-cpe:/a:redhat:enterprise_linux:rubygem-proxifier-doc, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-authentication-tokens, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-github-api, p-cpe:/a:redhat:enterprise_linux:nodejs-path-to-regexp, p-cpe:/a:redhat:enterprise_linux:python-paramiko-doc, p-cpe:/a:redhat:enterprise_linux:python-cachetools, p-cpe:/a:redhat:enterprise_linux:python-pysocks, p-cpe:/a:redhat:enterprise_linux:nodejs-asap, p-cpe:/a:redhat:enterprise_linux:rubygem-elasticsearch-transport, p-cpe:/a:redhat:enterprise_linux:nodejs-is-finite, p-cpe:/a:redhat:enterprise_linux:rubygem-netrc-doc, p-cpe:/a:redhat:enterprise_linux:rubygem-thread_safe, p-cpe:/a:redhat:enterprise_linux:nodejs-grunt-legacy-log, p-cpe:/a:redhat:enterprise_linux:openshift-ansible-lookup-plugins, p-cpe:/a:redhat:enterprise_linux:nodejs-base64url, p-cpe:/a:redhat:enterprise_linux:openshift-elasticsearch-plugin, p-cpe:/a:redhat:enterprise_linux:rubygem-string-scrub-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-camelcase-keys, p-cpe:/a:redhat:enterprise_linux:nodejs-vary, p-cpe:/a:redhat:enterprise_linux:rubygem-unf_ext-doc, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-durable-task, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-docker_metadata_filter-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-is-my-json-valid, p-cpe:/a:redhat:enterprise_linux:nodejs-on-headers, p-cpe:/a:redhat:enterprise_linux:nodejs-patternfly, p-cpe:/a:redhat:enterprise_linux:libthrift-java, p-cpe:/a:redhat:enterprise_linux:nodejs-jsonpointer, p-cpe:/a:redhat:enterprise_linux:nodejs-generate-object-property, p-cpe:/a:redhat:enterprise_linux:nodejs-sprintf-js, p-cpe:/a:redhat:enterprise_linux:nodejs-parseurl, p-cpe:/a:redhat:enterprise_linux:nodejs-typedarray, p-cpe:/a:redhat:enterprise_linux:perl-io-string, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-autofavorite, p-cpe:/a:redhat:enterprise_linux:rubygem-activesupport, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-git-pipeline, p-cpe:/a:redhat:enterprise_linux:libuv, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-pipeline-editor, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pipeline-stage-tags-metadata, p-cpe:/a:redhat:enterprise_linux:rubygem-domain_name, p-cpe:/a:redhat:enterprise_linux:rubygem-http-cookie-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-lodash, p-cpe:/a:redhat:enterprise_linux:nodejs-exit, p-cpe:/a:redhat:enterprise_linux:nodejs-number-is-nan, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-docker-commons, p-cpe:/a:redhat:enterprise_linux:nodejs-serve-static, p-cpe:/a:redhat:enterprise_linux:nodejs-xtend, p-cpe:/a:redhat:enterprise_linux:nodejs-object-assign, p-cpe:/a:redhat:enterprise_linux:image-inspector, p-cpe:/a:redhat:enterprise_linux:kibana, p-cpe:/a:redhat:enterprise_linux:nodejs-readable-stream, p-cpe:/a:redhat:enterprise_linux:rubygem-http-doc, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pipeline-stage-view, p-cpe:/a:redhat:enterprise_linux:rubygem-kubeclient, p-cpe:/a:redhat:enterprise_linux:rubygem-i18n, p-cpe:/a:redhat:enterprise_linux:thrift-qt, p-cpe:/a:redhat:enterprise_linux:rubygem-recursive-open-struct-doc, p-cpe:/a:redhat:enterprise_linux:rubygem-syslog_protocol, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-remote-syslog, p-cpe:/a:redhat:enterprise_linux:nodejs-passport, p-cpe:/a:redhat:enterprise_linux:openshift-external-storage-local-provisioner, p-cpe:/a:redhat:enterprise_linux:python-boto, p-cpe:/a:redhat:enterprise_linux:nodejs-cliui, p-cpe:/a:redhat:enterprise_linux:rubygem-yajl-ruby, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-flatten-hash, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-node, p-cpe:/a:redhat:enterprise_linux:python2-dictdiffer, p-cpe:/a:redhat:enterprise_linux:ansible-service-broker-container-scripts, p-cpe:/a:redhat:enterprise_linux:nodejs-parse-duration, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-federation-services, p-cpe:/a:redhat:enterprise_linux:nodejs-grunt, p-cpe:/a:redhat:enterprise_linux:nodejs-express, p-cpe:/a:redhat:enterprise_linux:nodejs-iconv-lite, p-cpe:/a:redhat:enterprise_linux:python2-urllib3, p-cpe:/a:redhat:enterprise_linux:rubygem-docker-api-doc, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-github-branch-source, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-events, p-cpe:/a:redhat:enterprise_linux:python2-mock, p-cpe:/a:redhat:enterprise_linux:nodejs-ansi-styles, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-variant, p-cpe:/a:redhat:enterprise_linux:nodejs-mime-types, p-cpe:/a:redhat:enterprise_linux:nodejs-grunt-contrib-clean, p-cpe:/a:redhat:enterprise_linux:prometheus-alertmanager, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-rest-impl, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-workflow-cps-global-lib, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-github-pipeline, p-cpe:/a:redhat:enterprise_linux:nodejs-generate-function, p-cpe:/a:redhat:enterprise_linux:nodejs-map-obj, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-credentials, cpe:/o:redhat:enterprise_linux:7, p-cpe:/a:redhat:enterprise_linux:nodejs-js-yaml, p-cpe:/a:redhat:enterprise_linux:nodejs-minimist, p-cpe:/a:redhat:enterprise_linux:nodejs-once, p-cpe:/a:redhat:enterprise_linux:prometheus-node_exporter, p-cpe:/a:redhat:enterprise_linux:nodejs-supports-color, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pipeline-model-declarative-agent, p-cpe:/a:redhat:enterprise_linux:nodejs-center-align, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pipeline-graph-analysis, p-cpe:/a:redhat:enterprise_linux:rubygem-yajl-ruby-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-cryptiles, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-credentials-binding, p-cpe:/a:redhat:enterprise_linux:dumb-init, p-cpe:/a:redhat:enterprise_linux:nodejs-escape-html, p-cpe:/a:redhat:enterprise_linux:python2-rsa, p-cpe:/a:redhat:enterprise_linux:prometheus, p-cpe:/a:redhat:enterprise_linux:python-rsa, p-cpe:/a:redhat:enterprise_linux:nodejs-wrappy, p-cpe:/a:redhat:enterprise_linux:rubygem-multi_json-doc, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-node-problem-detector, p-cpe:/a:redhat:enterprise_linux:nodejs-eventemitter3, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-mixin-config-placeholders-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-hoek, p-cpe:/a:redhat:enterprise_linux:nodejs-type-is, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-momentjs, p-cpe:/a:redhat:enterprise_linux:mediawiki-container-scripts, p-cpe:/a:redhat:enterprise_linux:nodejs-minimatch, p-cpe:/a:redhat:enterprise_linux:rubygem-kubeclient-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-pseudomap, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-docker-excluder, p-cpe:/a:redhat:enterprise_linux:nodejs-statuses, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-favorite, p-cpe:/a:redhat:enterprise_linux:sshpass, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-matrix-auth, p-cpe:/a:redhat:enterprise_linux:nodejs-util-deprecate, p-cpe:/a:redhat:enterprise_linux:python2-certifi, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-master, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-sse-gateway, p-cpe:/a:redhat:enterprise_linux:nodejs-requires-port, p-cpe:/a:redhat:enterprise_linux:nodejs-source-map, p-cpe:/a:redhat:enterprise_linux:postgresql-apb-role, p-cpe:/a:redhat:enterprise_linux:nodejs-kind-of, p-cpe:/a:redhat:enterprise_linux:nodejs-methods, p-cpe:/a:redhat:enterprise_linux:rubygem-activesupport-doc, p-cpe:/a:redhat:enterprise_linux:rubygem-mime-types, p-cpe:/a:redhat:enterprise_linux:nodejs-combined-stream, p-cpe:/a:redhat:enterprise_linux:nodejs-graceful-readlink, p-cpe:/a:redhat:enterprise_linux:nodejs-is-windows, p-cpe:/a:redhat:enterprise_linux:ansible-asb-modules, p-cpe:/a:redhat:enterprise_linux:nodejs-debug, p-cpe:/a:redhat:enterprise_linux:nodejs-mime, p-cpe:/a:redhat:enterprise_linux:python-crypto, p-cpe:/a:redhat:enterprise_linux:nodejs-client-sessions, p-cpe:/a:redhat:enterprise_linux:nodejs-depd, p-cpe:/a:redhat:enterprise_linux:nodejs-is-buffer, p-cpe:/a:redhat:enterprise_linux:nodejs-url-join, p-cpe:/a:redhat:enterprise_linux:rubygem-elasticsearch-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-content-disposition, p-cpe:/a:redhat:enterprise_linux:nodejs-which, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-workflow-cps, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-systemd-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-strip-ansi, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-clients-redistributable, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-multiple-scms, p-cpe:/a:redhat:enterprise_linux:nodejs-hooker, p-cpe:/a:redhat:enterprise_linux:python-docker, p-cpe:/a:redhat:enterprise_linux:rubygem-http-cookie, p-cpe:/a:redhat:enterprise_linux:nodejs, p-cpe:/a:redhat:enterprise_linux:openshift-ansible-filter-plugins, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-workflow-durable-task-step, p-cpe:/a:redhat:enterprise_linux:rubygem-addressable-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-grunt-legacy-log-utils, p-cpe:/a:redhat:enterprise_linux:openshift-external-storage-snapshot-provisioner, p-cpe:/a:redhat:enterprise_linux:rubygem-faraday, p-cpe:/a:redhat:enterprise_linux:nodejs-glob, p-cpe:/a:redhat:enterprise_linux:nodejs-lru-cache, p-cpe:/a:redhat:enterprise_linux:perl-thrift, p-cpe:/a:redhat:enterprise_linux:nodejs-is-unc-path, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pipeline-build-step, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-dashboard, p-cpe:/a:redhat:enterprise_linux:golang-github-prometheus-alertmanager, p-cpe:/a:redhat:enterprise_linux:nodejs-yargs, p-cpe:/a:redhat:enterprise_linux:rubygem-http-form_data, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-git-server, p-cpe:/a:redhat:enterprise_linux:openshift-external-storage, p-cpe:/a:redhat:enterprise_linux:rubygem-thread_safe-doc, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-junit, p-cpe:/a:redhat:enterprise_linux:containernetworking-plugins, p-cpe:/a:redhat:enterprise_linux:cockpit-kubernetes, p-cpe:/a:redhat:enterprise_linux:rubygem-msgpack-doc, p-cpe:/a:redhat:enterprise_linux:openshift-external-storage-efs-provisioner, p-cpe:/a:redhat:enterprise_linux:nodejs-oauth, p-cpe:/a:redhat:enterprise_linux:nodejs-async, p-cpe:/a:redhat:enterprise_linux:fb303-java, p-cpe:/a:redhat:enterprise_linux:nodejs-on-finished, p-cpe:/a:redhat:enterprise_linux:nodejs-cookies, p-cpe:/a:redhat:enterprise_linux:nodejs-rimraf, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pubsub-light, p-cpe:/a:redhat:enterprise_linux:rubygem-netrc, p-cpe:/a:redhat:enterprise_linux:nodejs-lcid, p-cpe:/a:redhat:enterprise_linux:nodejs-tough-cookie, p-cpe:/a:redhat:enterprise_linux:openshift-ansible-docs, p-cpe:/a:redhat:enterprise_linux:nodejs-ee-first, p-cpe:/a:redhat:enterprise_linux:nodejs-nopt, p-cpe:/a:redhat:enterprise_linux:tuned-profiles-atomic-openshift-node, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-flatten-hash-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-string_decoder, p-cpe:/a:redhat:enterprise_linux:nodejs-keygrip, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-clients, p-cpe:/a:redhat:enterprise_linux:python2-pysocks, p-cpe:/a:redhat:enterprise_linux:python-openshift, p-cpe:/a:redhat:enterprise_linux:rubygem-resolve-hostname-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-grunt-cli, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-record-modifier-doc, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-branch-api, p-cpe:/a:redhat:enterprise_linux:nodejs-passport-strategy, p-cpe:/a:redhat:enterprise_linux:nodejs-decamelize, p-cpe:/a:redhat:enterprise_linux:nodejs-json-stringify-safe, p-cpe:/a:redhat:enterprise_linux:jenkins-2-plugins, p-cpe:/a:redhat:enterprise_linux:golang-github-prometheus-prometheus, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-secure-forward, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-workflow-aggregator, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-commons, p-cpe:/a:redhat:enterprise_linux:rubygem-msgpack, p-cpe:/a:redhat:enterprise_linux:thrift-glib, p-cpe:/a:redhat:enterprise_linux:nodejs-dateformat, p-cpe:/a:redhat:enterprise_linux:nodejs-cookie, p-cpe:/a:redhat:enterprise_linux:nodejs-prr, p-cpe:/a:redhat:enterprise_linux:mediawiki-apb-role, p-cpe:/a:redhat:enterprise_linux:nodejs-has-ansi, p-cpe:/a:redhat:enterprise_linux:apb, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-openshift-client, p-cpe:/a:redhat:enterprise_linux:rubygem-cool.io-doc, p-cpe:/a:redhat:enterprise_linux:rubygem-multipart-post, p-cpe:/a:redhat:enterprise_linux:nodejs-is-absolute, p-cpe:/a:redhat:enterprise_linux:rubygem-string-scrub, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pipeline-model-definition, p-cpe:/a:redhat:enterprise_linux:nodejs-extend, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-subversion, p-cpe:/a:redhat:enterprise_linux:rubygem-sigdump-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-mime-db, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-utils, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-excluder, p-cpe:/a:redhat:enterprise_linux:nodejs-window-size, p-cpe:/a:redhat:enterprise_linux:python-certifi, p-cpe:/a:redhat:enterprise_linux:hawkular-openshift-agent, p-cpe:/a:redhat:enterprise_linux:rubygem-http_parser.rb, p-cpe:/a:redhat:enterprise_linux:nodejs-core-util-is, p-cpe:/a:redhat:enterprise_linux:nodejs-docs, p-cpe:/a:redhat:enterprise_linux:python2-kubernetes-tests, p-cpe:/a:redhat:enterprise_linux:rubygem-uuidtools, p-cpe:/a:redhat:enterprise_linux:openshift-eventrouter, p-cpe:/a:redhat:enterprise_linux:rubygem-lru_redux-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-cookie-signature, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-pod, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-personalization, p-cpe:/a:redhat:enterprise_linux:nodejs-repeat-string, p-cpe:/a:redhat:enterprise_linux:nodejs-image-size, p-cpe:/a:redhat:enterprise_linux:nodejs-align-text, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-openshift-sync, p-cpe:/a:redhat:enterprise_linux:nodejs-grunt-contrib-copy, p-cpe:/a:redhat:enterprise_linux:nodejs-unpipe, p-cpe:/a:redhat:enterprise_linux:jenkins, p-cpe:/a:redhat:enterprise_linux:nodejs-chalk, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-systemd, p-cpe:/a:redhat:enterprise_linux:nodejs-pause, p-cpe:/a:redhat:enterprise_linux:nodejs-caseless, p-cpe:/a:redhat:enterprise_linux:nodejs-oauth-sign, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-viaq_data_model-doc, p-cpe:/a:redhat:enterprise_linux:python-crontab, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-mixin-config-placeholders, p-cpe:/a:redhat:enterprise_linux:nodejs-forever-agent, p-cpe:/a:redhat:enterprise_linux:nodejs-isarray, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-openshift-pipeline, p-cpe:/a:redhat:enterprise_linux:rubygem-rest-client, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-docker-workflow, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-icon-shim, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-dockerregistry, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pipeline-rest-api, p-cpe:/a:redhat:enterprise_linux:nodejs-har-validator, p-cpe:/a:redhat:enterprise_linux:nodejs-negotiator, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-rewrite-tag-filter, p-cpe:/a:redhat:enterprise_linux:ansible, p-cpe:/a:redhat:enterprise_linux:nodejs-ctype, p-cpe:/a:redhat:enterprise_linux:rubygem-sigdump, p-cpe:/a:redhat:enterprise_linux:ansible-service-broker, p-cpe:/a:redhat:enterprise_linux:nodejs-assert-plus, p-cpe:/a:redhat:enterprise_linux:nodejs-send, p-cpe:/a:redhat:enterprise_linux:atomic-openshift-tests, p-cpe:/a:redhat:enterprise_linux:rubygem-fluent-plugin-secure-forward-doc, p-cpe:/a:redhat:enterprise_linux:python-click, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pipeline-milestone-step, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-pipeline-model-extensions, p-cpe:/a:redhat:enterprise_linux:nodejs-commander, p-cpe:/a:redhat:enterprise_linux:rubygem-ffi, p-cpe:/a:redhat:enterprise_linux:nodejs-qs, p-cpe:/a:redhat:enterprise_linux:elasticsearch, p-cpe:/a:redhat:enterprise_linux:elasticsearch-cloud-kubernetes, p-cpe:/a:redhat:enterprise_linux:nodejs-passport-http-bearer, p-cpe:/a:redhat:enterprise_linux:python-urllib3, p-cpe:/a:redhat:enterprise_linux:nodejs-underscore-dot-string, p-cpe:/a:redhat:enterprise_linux:nodejs-esprima, p-cpe:/a:redhat:enterprise_linux:python-google-auth, p-cpe:/a:redhat:enterprise_linux:heapster, p-cpe:/a:redhat:enterprise_linux:golang-github-prometheus-node_exporter, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-pipeline-api-impl, p-cpe:/a:redhat:enterprise_linux:nodejs-process-nextick-args, p-cpe:/a:redhat:enterprise_linux:rubygem-addressable, p-cpe:/a:redhat:enterprise_linux:python-elasticsearch, p-cpe:/a:redhat:enterprise_linux:ansible-service-broker-selinux, p-cpe:/a:redhat:enterprise_linux:rubygem-http_parser.rb-doc, p-cpe:/a:redhat:enterprise_linux:rubygem-multipart-post-doc, p-cpe:/a:redhat:enterprise_linux:nodejs-isstream, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-jwt, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-cloudbees-folder, p-cpe:/a:redhat:enterprise_linux:jenkins-plugin-blueocean-rest, p-cpe:/a:redhat:enterprise_linux:rubygem-recursive-open-struct, p-cpe:/a:redhat:enterprise_linux:openshift-ansible-callback-plugins, p-cpe:/a:redhat:enterprise_linux:python2-openshift, p-cpe:/a:redhat:enterprise_linux:nodejs-bluebird, p-cpe:/a:redhat:enterprise_linux:rubygem-minitest

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu

Exploit Ease: No known exploits are available

Patch Publication Date: 11/28/2017

Vulnerability Publication Date: 7/27/2018

Reference Information

CVE: CVE-2017-12195

CWE: 287

RHSA: 2017:3188

Detections

Analytics