FortiClient VulnerabilityRedHat ocf-shellfuncs CVE-2020-11078 CRLF Injection Vulnerability
Description
The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability (HA) environment. Security Fix(es): * python-httplib2: CRLF injection via an attacker controlled unescaped part of uri for httplib2.Http.request function (CVE-2020-11078) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.3 Release Notes linked from the References section.
Affected Applications
ocf-shellfuncs
CVE References
CVE-2020-11078Other References
https://access.redhat.com/errata/RHSA-2020:4605| ID | 65371 |
| Created | Nov 07, 2020 |
| Description Updated |
Dec 20, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Linux |
| Vendor | RedHat |
| Patch | auto |
| Application | ocf-shellfuncs |