⚲
Project
General
Profile
Sign in
Register
Home
Projects
Help
Search
:
Foreman
All Projects
Overview
Activity
Roadmap
Issues
Wiki
Repository
«
Previous
|
Next
»
Revision af9edf10
Added by
Marek Hulán
almost 7 years
ago
ID
af9edf1098bf8e643e1607f9375595e375e7ade6
Parent
b3be6aa1
Child
2d336038
Fixes
#19612
- CVE-2017-7505 don't expose admin to taxed users
Related issues
Bug #19612
: CVE-2017-7505: User scoped in organization with permissions for user management can manage administrators that are not assigned to any organization
Changes
View differences
added
modified
copied
renamed
deleted
app
controllers
concerns
foreman
controller
authentication.rb
(
diff
)
models
concerns
taxonomix.rb
(
diff
)
notification.rb
(
diff
)
test
controllers
api
v2
users_controller_test.rb
(
diff
)
models
taxonomix_test.rb
(
diff
)
Loading...
Fixes #19612 - CVE-2017-7505 don't expose admin to taxed users