Project

General

Profile

Actions
Copy link

Bug #5473

closed

Make sure consumer can't change other than its own resources

Added by Ivan Necas over 10 years ago. Updated over 6 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Ivan Necas
Category:
-
Target version:
Katello 2.0
Difficulty:
Triaged:
Yes
Bugzilla link:
Pull request:
Fixed in Releases:
Found in Releases:
Red Hat JIRA:

Description

The consumer authrozition was being skipped, so the consumer certificate
could modify other's consumer related stuff.

Since this change was not released yet, not filling CVE for this one

Actions
Copy link

Also available in: Atom PDF