- Vulnerability/
- RHSA-2019:1245
RHSA-2019:1245: Moderate: Red Hat Quay 3.0.2 security and bug fix update
First published: Mon May 20 2019(Updated: )
Security Fix(es):<br><li> A flaw was found in the way the DES/3DES cipher was used as part of the</li> TLS/SSL protocol. A man-in-the-middle attacker could use this flaw to recover some plaintext data by capturing large amounts of encrypted traffic between TLS/SSL server and client if the communication used a DES/3DES based ciphersuite. (CVE-2016-2183)<br>Bug Fix(es):<br><li> Running Quay in config mode now works in a disconnected option which doesn't require pulling resources from the Internet.</li> <li> Quay's security scan endpoint is now enabled at startup for viewing results of Clair container image scans.</li>
| Affected Software | Affected Version | How to fix |
|---|
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/redhat-errata
- source/Red Hat
- anchor-id/RHSA-2019:1245
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/title
- agent/type