© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
1b1ed1a
(Get the code!)
Detailed bug description:
Cobbler version up to 2.8.2 is vulnerable to a command injection vulnerability in the "add repo" component resulting in arbitrary code execution as root user.
Fuel node ships with Cobbler used for cloud deployment purposes. Although Cobber API is not meant to use over the network from Fuel node we need to provide updated Cobbler packages for Fuel.
https:/