Bug #32969
closed
Skip trusted host check for OVAL endpoints
Added by Ondřej Pražák about 4 years ago.
Updated almost 4 years ago.
Description
As clients are not in trusted hosts, endpoints for OVAL that are accessed by clients should not be authorized by trusted hosts.
- Related to Bug #32257: CVE-2021-20290: Any client can perform Foreman actions added
- Status changed from New to Ready For Testing
- Pull request https://github.com/theforeman/smart_proxy_openscap/pull/85 added
- Fixed in Releases smart_proxy_openscap 0.9.2 added
- Status changed from Ready For Testing to Closed
- Bugzilla link set to 1980709
- Fixed in Releases smart_proxy_openscap 0.9.1 added
- Fixed in Releases deleted (
smart_proxy_openscap 0.9.2)
Also available in: Atom
PDF
Updated by 
Updated by