Uploaded image for project: 'Percona Monitoring and Management'
  1. Percona Monitoring and Management
  2. PMM-3522

CVE-2018-16492 and CVE-2018-16487

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Done
    • Priority: Medium
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 1.17.1
    • Component/s: PMM Server
    • Labels:
      None

      Description

      PMM server and  QAN App repos are  affected  by  https://nvd.nist.gov/vuln/detail/CVE-2018-16492  and  https://nvd.nist.gov/vuln/detail/CVE-2018-16487 

      Because PMM 1.X is  single user installation this not letting to do some unauthorized action 

       

       

      Solution: Update packages in repos

        Smart Checklist

          Attachments

            Activity

              People

              • Assignee:
                daria.lymanska Daria Lymanska
                Reporter:
                roma.novikov Roma Novikov
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 1 hour, 45 minutes
                  1h 45m