The wiki is deprecated and due to be decommissioned by the end of September 2022.
The content is being migrated to other supports, new updates will be ignored and lost.
If needed you can get in touch with EGI SDIS team using operations @ egi.eu.
Difference between revisions of "SVG:Advisories"
Jump to navigation
Jump to search
| Line 12: | Line 12: | ||
{| {{egi-table}} | {| {{egi-table}} | ||
!Date !! Title !! Contents/Link !! Risk !! Status !! | !Date !! Title !! Contents/Link !! Risk !! Status !! | ||
|- | |||
| 2014-06-23 || EMI WMS Impersonation vulnerability || [[SVG:Advisory-SVG-2013-5331 | Advisory-SVG-2013-5331 ]] | |||
|| High || Fixed || | |||
|- | |||
|- | |- | ||
Revision as of 15:49, 23 June 2014
| Main page | Software Security Checklist | Issue Handling | Advisories | Notes On Risk | Advisory Template | More |
Advisories
EGI SVG primarily issues advisories concerning gLite Middleware.
CSIRT also issues general alerts at https://wiki.egi.eu/wiki/EGI_CSIRT:Alerts
A guide to the risk categories is available at Notes On Risk
Earlier Advisories: Advisories from 2011 to 2013
| Date | Title | Contents/Link | Risk | Status | |
|---|---|---|---|---|---|
| 2014-06-23 | EMI WMS Impersonation vulnerability | Advisory-SVG-2013-5331 | High | Fixed | |
| 2014-06-02 | DPM version in EPEL | Advisory-SVG-2014-6963 | High | Fixed | |
| 2014-04-10 | WN and UI tarballs in the EMI repository contain a version of OpenSSL vulnerable to CVE-2014-016 | Advisory-SVG-2014-6884 | Critical | Fixed | |
| 2014-04-08 | OpenSSL "Heartbleed" vulnerability CVE-2014-0160 (Link to CSIRT alert) | OpenSSL-2014-04-08 | Critical | Fixed | |
| 2014-03-27 | Torque Vulnerability: arbitrary code execution via job submission | Advisory-SVG-2014-6627 | High | Fixed | |
| 2014-03-25 | Vulnerabilities in STORM | Advisory-SVG-2013-6116 | High | Fixed | |
| 2014-02-13 | Results of CREAM vulnerability Assessment | Advisory-SVG-2013-5813 | High | Fixed |