Security Advisory Moderate: spacewalk-java, spacewalk-web and satellite-branding security update

Advisory: RHSA-2014:0148-1
Type: Security Advisory
Severity: Moderate
Issued on: 2014-02-10
Last updated on: 2014-02-10
Affected Products: Red Hat Satellite (v. 5.6 for RHEL 5)
Red Hat Satellite (v. 5.6 for RHEL 6)
CVEs (cve.mitre.org): CVE-2012-6149
CVE-2013-1869
CVE-2013-1871
CVE-2013-4415

Details

Updated spacewalk-java, spacewalk-web, and satellite-branding packages that
fix multiple security issues are now available for Red Hat Satellite 5.6.

The Red Hat Security Response Team has rated this update as having Moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

Red Hat Satellite is a systems management tool for Linux-based
infrastructures. It allows for provisioning, remote management and
monitoring of multiple Linux deployments with a single, centralized tool.

A cross-site scripting (XSS) flaw was found in the way the Red Hat
Satellite web interface performed sanitization of notes for registered
systems. A remote authenticated Red Hat Satellite user could create a
malicious note that, when viewed by a victim, could execute arbitrary web
script with the privileges of the user viewing that note. (CVE-2012-6149)

Multiple cross-site scripting (XSS) flaws were found in the Red Hat
Satellite web interface. A remote attacker could provide a specially
crafted link that, when visited by an authenticated Red Hat Satellite user,
would lead to arbitrary web script execution in the context of the user's
web interface session. (CVE-2013-1871, CVE-2013-4415)

An HTTP header injection flaw was found in the way the Red Hat Satellite
web interface processed the return URL parameter for all HTTP GET requests.
A remote attacker could use this flaw to conduct cross-site scripting (XSS)
and HTTP response splitting attacks against users visiting the site.
(CVE-2013-1869)

Red Hat would like to thank Ben Ford of Puppet Labs for reporting
CVE-2012-6149, Ryan Giobbi of UPMC for reporting CVE-2013-1869 and
CVE-2013-1871, and Adam Willard and Jose Carlos de Arriba of Foreground
Security for reporting CVE-2013-4415.

Users of Red Hat Satellite 5.6 are advised to upgrade to these updated
packages, which resolve these issues. For this update to take effect, Red
Hat Satellite must be restarted. Refer to the Solution section for details.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

Run the following command to restart the Red Hat Satellite server:

# rhn-satellite restart

Updated packages

Red Hat Satellite (v. 5.6 for RHEL 5)

SRPMS:
satellite-branding-5.6.0.23-1.el5sat.src.rpm     MD5: 9f2abe896f662c68910c7262e09d4183
SHA-256: bd26a477fcc820670ad320dd288a1770b8c28f297e2be48353f2500d140d17a3
spacewalk-java-2.0.2-58.el5sat.src.rpm
File outdated by:  RHBA-2015:1015
    MD5: e02448be5e09c0db5b877dff85b10523
SHA-256: d3ed55b958de52bd595cfcb00cc951761ce0bb3ef3e3283265e6ee791c4faaaa
spacewalk-web-2.0.3-19.el5sat.src.rpm
File outdated by:  RHBA-2015:1015
    MD5: 29c8d30066a66f4ca0ab062d7a74d808
SHA-256: 5a0e733a79b212fdda8cec461227d0e134483ea4866ac71d154c08c0736344ea
 
s390x:
satellite-branding-5.6.0.23-1.el5sat.noarch.rpm     MD5: b9596b481279d913dfa25ebb8fac0bbd
SHA-256: 2e1762577958ef581703ad0b5db23d0bb11ae2519169f81a44c1c6ea54f9a4bf
spacewalk-base-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 72fd7641217dae2184d1572e4fd6a4fe
SHA-256: d67a7725f12dc1509b795ebcd15beb8628a0a8883578e49dcb8f16d6105bcd24
spacewalk-base-minimal-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 5e03a19e2dd7d8ce0a20f52a52c2ce48
SHA-256: 74380e7572faffbe7a3086cb8636201c0e4d4e22eac872d313065644bbd98657
spacewalk-base-minimal-config-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 3f0f0f5de148420923d39163430f0917
SHA-256: fae6acc8c02754ce1398d5df19546a45d662bfb6dc6bf07e80e714b3eca988ee
spacewalk-dobby-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 23af43edc1df1cc3cc20e0cc395c7846
SHA-256: 64bafa87186a01ada0ac994427b5f2629ec41fb302d89368c121adff7602cee0
spacewalk-grail-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 12e9d4e89d8ccd3fdf3cde8a6f4fd6c7
SHA-256: bc6204331c6da453e00857073f1accd16415bb3016608d42890ee36f2c7ff2fe
spacewalk-html-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 87a416b7cb6490e36ec73d4e837d5594
SHA-256: 362d7f22a932de3cca6194471e9d37b92249b3d45bb9a0da291e1a4183d39792
spacewalk-java-2.0.2-58.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 5bc127e5c2551ac4c6706d25dee239ee
SHA-256: 32a7bdaacb31442308003f48b970243932eec3f30f4c9984fa18400b8647d18d
spacewalk-java-config-2.0.2-58.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: c4433252eba05739d45598517fc1038e
SHA-256: 5809851cd5372ccc608c36ed66fbd36e5eb1d42d73a92e3ec371650750d8b2b0
spacewalk-java-lib-2.0.2-58.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: d5498e03b6c7232c99d289fd33a5b890
SHA-256: b156ef1a55a162fc8b403684cea9c750b85d684e54ac514c3918f9a453a6159f
spacewalk-java-oracle-2.0.2-58.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: f0be85fda05fa89977a8ee0335e7ea1a
SHA-256: 8c8035c84439fd0effc9dd67c0137c868c0829083de5a9005ddd5c664c0a8b4c
spacewalk-java-postgresql-2.0.2-58.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 2b724ed9fb6b75bac2ead8926a181d56
SHA-256: 1c2193b0b7ebf1971051381677c86a90203a0037c401289a149f1a9f700376ce
spacewalk-pxt-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 2175920418174e3e4d3d9bb84a8a592c
SHA-256: 208de37ff48bd4f87ca896f0894c00cf7612f4d4b3c0221f926912ca34970cb9
spacewalk-sniglets-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: b83b582d4e28c0adc2606de8f235fa7b
SHA-256: 526e17b96c6adad39305223fbcfcd79d6c145a2e0c15ec1e2bfa1438d52076a5
spacewalk-taskomatic-2.0.2-58.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 9f142ebf6fc6aa2e405b3536f7375cbf
SHA-256: 38ac4d5a1f53be30f6bfc52c508125bc9adea8f8388327006c1349727b6a4984
 
x86_64:
satellite-branding-5.6.0.23-1.el5sat.noarch.rpm     MD5: b9596b481279d913dfa25ebb8fac0bbd
SHA-256: 2e1762577958ef581703ad0b5db23d0bb11ae2519169f81a44c1c6ea54f9a4bf
spacewalk-base-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 72fd7641217dae2184d1572e4fd6a4fe
SHA-256: d67a7725f12dc1509b795ebcd15beb8628a0a8883578e49dcb8f16d6105bcd24
spacewalk-base-minimal-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 5e03a19e2dd7d8ce0a20f52a52c2ce48
SHA-256: 74380e7572faffbe7a3086cb8636201c0e4d4e22eac872d313065644bbd98657
spacewalk-base-minimal-config-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 3f0f0f5de148420923d39163430f0917
SHA-256: fae6acc8c02754ce1398d5df19546a45d662bfb6dc6bf07e80e714b3eca988ee
spacewalk-dobby-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 23af43edc1df1cc3cc20e0cc395c7846
SHA-256: 64bafa87186a01ada0ac994427b5f2629ec41fb302d89368c121adff7602cee0
spacewalk-grail-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 12e9d4e89d8ccd3fdf3cde8a6f4fd6c7
SHA-256: bc6204331c6da453e00857073f1accd16415bb3016608d42890ee36f2c7ff2fe
spacewalk-html-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 87a416b7cb6490e36ec73d4e837d5594
SHA-256: 362d7f22a932de3cca6194471e9d37b92249b3d45bb9a0da291e1a4183d39792
spacewalk-java-2.0.2-58.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 5bc127e5c2551ac4c6706d25dee239ee
SHA-256: 32a7bdaacb31442308003f48b970243932eec3f30f4c9984fa18400b8647d18d
spacewalk-java-config-2.0.2-58.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: c4433252eba05739d45598517fc1038e
SHA-256: 5809851cd5372ccc608c36ed66fbd36e5eb1d42d73a92e3ec371650750d8b2b0
spacewalk-java-lib-2.0.2-58.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: d5498e03b6c7232c99d289fd33a5b890
SHA-256: b156ef1a55a162fc8b403684cea9c750b85d684e54ac514c3918f9a453a6159f
spacewalk-java-oracle-2.0.2-58.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: f0be85fda05fa89977a8ee0335e7ea1a
SHA-256: 8c8035c84439fd0effc9dd67c0137c868c0829083de5a9005ddd5c664c0a8b4c
spacewalk-java-postgresql-2.0.2-58.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 2b724ed9fb6b75bac2ead8926a181d56
SHA-256: 1c2193b0b7ebf1971051381677c86a90203a0037c401289a149f1a9f700376ce
spacewalk-pxt-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 2175920418174e3e4d3d9bb84a8a592c
SHA-256: 208de37ff48bd4f87ca896f0894c00cf7612f4d4b3c0221f926912ca34970cb9
spacewalk-sniglets-2.0.3-19.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: b83b582d4e28c0adc2606de8f235fa7b
SHA-256: 526e17b96c6adad39305223fbcfcd79d6c145a2e0c15ec1e2bfa1438d52076a5
spacewalk-taskomatic-2.0.2-58.el5sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 9f142ebf6fc6aa2e405b3536f7375cbf
SHA-256: 38ac4d5a1f53be30f6bfc52c508125bc9adea8f8388327006c1349727b6a4984
 
Red Hat Satellite (v. 5.6 for RHEL 6)

SRPMS:
satellite-branding-5.6.0.23-1.el6sat.src.rpm     MD5: 03e8861b762285ebc19fc0351e9e2813
SHA-256: 5b70c8c29e1fc752aef5fa2a2a6c7c3a993b79f6a5f87708f04b7cde39895541
spacewalk-java-2.0.2-58.el6sat.src.rpm
File outdated by:  RHBA-2015:1015
    MD5: 87079baaddb8520effeb4e80c66aade6
SHA-256: b55c5af7fdb7312e41851c99ea62156903fbfb088900c56880ddd707fcbafa60
spacewalk-web-2.0.3-19.el6sat.src.rpm
File outdated by:  RHBA-2015:1015
    MD5: e1aff88b0cdae1e447e5a1f9e475744b
SHA-256: e935706c15bb0c987110911669b7a4b7c51c9a081c71cadbb3f19a142de0c4d0
 
s390x:
satellite-branding-5.6.0.23-1.el6sat.noarch.rpm     MD5: 33ba36be5fec49647375b671154986d5
SHA-256: 708ca0007a510b565b51aaa22916d47338267c8fee8ff087df4d5f73eff0eb48
spacewalk-base-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 8cf7836ec4d5ac0433f9d16119f2e445
SHA-256: dbd6904a5a8a30411383a6e4ce18d4b4dfa6c9dff27a025c61f2510c3e425151
spacewalk-base-minimal-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: ebc650fdb4fd27756783e7c0e556d423
SHA-256: bdc3995071172eaec282cd21ddb13082b6e6e923105b99b4e3a066e70d3f5078
spacewalk-base-minimal-config-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 862b4ec383008b67f621e959374249b7
SHA-256: 8d2eecf17ae2b4c9158b07715d4ce59a538221a12c65fd85400111e9bc79aec3
spacewalk-dobby-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 6c8f19b54e7d9490bb85cbfc8962b949
SHA-256: 3c437d97152ef021d4951c0cc0aa1d62dfbcdb03a0ece2fff6086f8842431abd
spacewalk-grail-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 125d8ee03a7424ab0c11d88fa859bf54
SHA-256: 9ffde5cfc7386efa9e9d37005fd7ab0dc12a0dd0d02efe0e347282ec47594dc8
spacewalk-html-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 0f4c3cce10e3af8644bc89376848f519
SHA-256: 9780a9788f688aa80eb751bb8b45f1ca5607e37c901e66f4dc097ec045dcdd7b
spacewalk-java-2.0.2-58.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 34d1c9cd249adcd7ffd5408e8f0c8f7a
SHA-256: d1f2a6097b62382782f59a54e9779c3f37847779476cdb851ad92563b9ee6179
spacewalk-java-config-2.0.2-58.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 3e8fbe378ce04b0d5f87af2dab490c0d
SHA-256: efda3bbf7b9803529916b66d5f6507889fe8073862cbe4b0a76566055821a57d
spacewalk-java-lib-2.0.2-58.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 8b65ef24907e8df10407732b0adb6160
SHA-256: 8df456ed9dd1e45d08c1032785964cdf8344be1a2d4e202deca9362c32daa114
spacewalk-java-oracle-2.0.2-58.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: a2381aac5173c565d689488d7ac809c1
SHA-256: 2b371c974bd28568eedce276e0966bc9e0f4f1f335d28f038c4ca8d0f135ce56
spacewalk-java-postgresql-2.0.2-58.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: c36c08a65df188ec615955d06f3c6213
SHA-256: f8ac405ba34e032ee98dc106e7df32bb6e0d4b9e188df9c504e2750661d4ac42
spacewalk-pxt-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 8d4210c105b3001990d2772ec2ad3f67
SHA-256: 9baba7747e49d7ef41eafafefd681b36225bcd3d33bb7e7e892139d16ba6b09f
spacewalk-sniglets-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 309fc4c17135b7a5d697dd8820bf3a43
SHA-256: 71e29eec657eab5d19d18f89f87d351dd54b8ca429c6fad6b3ea4f98d99b1f0a
spacewalk-taskomatic-2.0.2-58.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: c635a253b8f9ad0e8e52d8546682ffcd
SHA-256: 17642a88e50853cb575e0267481b9f0819418c27f350b66b21999e0c11b29654
 
x86_64:
satellite-branding-5.6.0.23-1.el6sat.noarch.rpm     MD5: 33ba36be5fec49647375b671154986d5
SHA-256: 708ca0007a510b565b51aaa22916d47338267c8fee8ff087df4d5f73eff0eb48
spacewalk-base-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 8cf7836ec4d5ac0433f9d16119f2e445
SHA-256: dbd6904a5a8a30411383a6e4ce18d4b4dfa6c9dff27a025c61f2510c3e425151
spacewalk-base-minimal-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: ebc650fdb4fd27756783e7c0e556d423
SHA-256: bdc3995071172eaec282cd21ddb13082b6e6e923105b99b4e3a066e70d3f5078
spacewalk-base-minimal-config-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 862b4ec383008b67f621e959374249b7
SHA-256: 8d2eecf17ae2b4c9158b07715d4ce59a538221a12c65fd85400111e9bc79aec3
spacewalk-dobby-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 6c8f19b54e7d9490bb85cbfc8962b949
SHA-256: 3c437d97152ef021d4951c0cc0aa1d62dfbcdb03a0ece2fff6086f8842431abd
spacewalk-grail-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 125d8ee03a7424ab0c11d88fa859bf54
SHA-256: 9ffde5cfc7386efa9e9d37005fd7ab0dc12a0dd0d02efe0e347282ec47594dc8
spacewalk-html-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 0f4c3cce10e3af8644bc89376848f519
SHA-256: 9780a9788f688aa80eb751bb8b45f1ca5607e37c901e66f4dc097ec045dcdd7b
spacewalk-java-2.0.2-58.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 34d1c9cd249adcd7ffd5408e8f0c8f7a
SHA-256: d1f2a6097b62382782f59a54e9779c3f37847779476cdb851ad92563b9ee6179
spacewalk-java-config-2.0.2-58.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 3e8fbe378ce04b0d5f87af2dab490c0d
SHA-256: efda3bbf7b9803529916b66d5f6507889fe8073862cbe4b0a76566055821a57d
spacewalk-java-lib-2.0.2-58.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 8b65ef24907e8df10407732b0adb6160
SHA-256: 8df456ed9dd1e45d08c1032785964cdf8344be1a2d4e202deca9362c32daa114
spacewalk-java-oracle-2.0.2-58.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: a2381aac5173c565d689488d7ac809c1
SHA-256: 2b371c974bd28568eedce276e0966bc9e0f4f1f335d28f038c4ca8d0f135ce56
spacewalk-java-postgresql-2.0.2-58.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: c36c08a65df188ec615955d06f3c6213
SHA-256: f8ac405ba34e032ee98dc106e7df32bb6e0d4b9e188df9c504e2750661d4ac42
spacewalk-pxt-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 8d4210c105b3001990d2772ec2ad3f67
SHA-256: 9baba7747e49d7ef41eafafefd681b36225bcd3d33bb7e7e892139d16ba6b09f
spacewalk-sniglets-2.0.3-19.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: 309fc4c17135b7a5d697dd8820bf3a43
SHA-256: 71e29eec657eab5d19d18f89f87d351dd54b8ca429c6fad6b3ea4f98d99b1f0a
spacewalk-taskomatic-2.0.2-58.el6sat.noarch.rpm
File outdated by:  RHBA-2015:1015
    MD5: c635a253b8f9ad0e8e52d8546682ffcd
SHA-256: 17642a88e50853cb575e0267481b9f0819418c27f350b66b21999e0c11b29654
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

882000 - CVE-2012-6149 Satellite, Spacewalk (spacewalk-java): XSS in system.addNote XML-RPC call due improper sanitization of note's subject and content
923464 - CVE-2013-1869 Satellite/Spacewalk: header injection flaw
923467 - CVE-2013-1871 Satellite/Spacewalk: XSS in EditAddress page
979452 - CVE-2013-4415 Red Hat Satellite, Spacewalk: PAGE_SIZE_LABEL_SELECTED cross-site scripting (XSS)


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/