Fuel for OpenStack

Vulnerable httpd package on Fuel node (cobbler image)

Bug #1637089 reported by Adam Heczko on 2016-10-27

256

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Fuel for OpenStack	Fix Released	Low	Sergii Rizvan	Fuel for OpenStack 8.0-mu-4

Bug Description

Detailed bug description:
It was observed that httpd process running within fuel-core-8.0-cobbler image is outdated and vulnerable.
Observed version is httpd-2.4.6-31.el7.centos.1.x86_64

Expected results:
Expected version is httpd-2.4.6-40.el7_2.4.x86_64.rpm

See original description

Tags:

Adam Heczko (aheczko-mirantis) on 2016-10-27

Changed in fuel:
assignee:	nobody → MOS Maintenance (mos-maintenance)

Adam Heczko (aheczko-mirantis) on 2016-10-28

summary:	- Vulnerable httpd package on Fuel node + Vulnerable httpd package on Fuel node (cobbler image)
description:	updated
Changed in fuel:
importance:	Medium → Low

Sergii Rizvan (srizvan) on 2016-10-31

Changed in fuel:
assignee:	MOS Maintenance (mos-maintenance) → Sergii Rizvan (srizvan)

Revision history for this message

Sergii Rizvan (srizvan) wrote on 2016-11-03:

The packages are in pkg-updates repository.

Changed in fuel:
status:	New → Fix Committed

Revision history for this message

Ekaterina Shutova (eshutova) wrote on 2017-02-09:

Verified on MOS 8.0 MU4 updates.
httpd.x86_64 2.4.6-40.el7.centos.4 mos8.0-security

Changed in fuel:
status:	Fix Committed → Fix Released

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.