CVE-2016-3106

CVE-2016-3106

EPSS 0.9%

Pulp before 2.8.3 creates a temporary directory during CA key generation in an insecure manner.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://bugzilla.redhat.com/show_bug.cgi?id=1324926 https://pulp.plan.io/issues/1827 http://www.openwall.com/lists/oss-security/2016/04/18/11 http://www.openwall.com/lists/oss-security/2016/05/20/1