Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-5208 (GCVE-0-2020-5208)
Vulnerability from cvelistv5 – Published: 2020-02-05 14:00 – Updated: 2024-08-04 08:22
VLAI
EPSS
Title
remote code execution vulnerability in ipmitool
Summary
It's been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged user. This problem is fixed in version 1.8.19.
Severity
7.7 (High)
CWE
- CWE-120 - Buffer Overflow
Assigner
References
8 references
| URL | Tags |
|---|---|
| https://github.com/ipmitool/ipmitool/security/adv… | x_refsource_CONFIRM |
| https://github.com/ipmitool/ipmitool/commit/e824c… | x_refsource_MISC |
| https://lists.debian.org/debian-lts-announce/2020… | mailing-listx_refsource_MLIST |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| http://lists.opensuse.org/opensuse-security-annou… | vendor-advisoryx_refsource_SUSE |
| https://security.gentoo.org/glsa/202101-03 | vendor-advisoryx_refsource_GENTOO |
| https://lists.debian.org/debian-lts-announce/2021… | mailing-listx_refsource_MLIST |
Impacted products
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T08:22:08.968Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/ipmitool/ipmitool/commit/e824c23316ae50beb7f7488f2055ac65e8b341f2"
},
{
"name": "[debian-lts-announce] 20200209 [SECURITY] [DLA 2098-1] ipmitool security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00006.html"
},
{
"name": "FEDORA-2020-92cc67ff5a",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RYYEKUAUTCWICM77HOEGZDVVEUJLP4BP/"
},
{
"name": "FEDORA-2020-eb0cf4d268",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K2BPW66KDP4H36AGZXLED57A3O2Y6EQW/"
},
{
"name": "openSUSE-SU-2020:0247",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00031.html"
},
{
"name": "GLSA-202101-03",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202101-03"
},
{
"name": "[debian-lts-announce] 20210630 [SECURITY] [DLA 2699-1] ipmitool security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00029.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "ipmitool",
"vendor": "ipmitool",
"versions": [
{
"lessThan": "\u003c 1.8.19",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "It\u0027s been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged user. This problem is fixed in version 1.8.19."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-120",
"description": "CWE-120 Buffer Overflow",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-07-01T02:06:12.000Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/ipmitool/ipmitool/commit/e824c23316ae50beb7f7488f2055ac65e8b341f2"
},
{
"name": "[debian-lts-announce] 20200209 [SECURITY] [DLA 2098-1] ipmitool security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00006.html"
},
{
"name": "FEDORA-2020-92cc67ff5a",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RYYEKUAUTCWICM77HOEGZDVVEUJLP4BP/"
},
{
"name": "FEDORA-2020-eb0cf4d268",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K2BPW66KDP4H36AGZXLED57A3O2Y6EQW/"
},
{
"name": "openSUSE-SU-2020:0247",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00031.html"
},
{
"name": "GLSA-202101-03",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/202101-03"
},
{
"name": "[debian-lts-announce] 20210630 [SECURITY] [DLA 2699-1] ipmitool security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00029.html"
}
],
"source": {
"advisory": "GHSA-g659-9qxw-p7cp",
"discovery": "UNKNOWN"
},
"title": "remote code execution vulnerability in ipmitool",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "security-advisories@github.com",
"ID": "CVE-2020-5208",
"STATE": "PUBLIC",
"TITLE": "remote code execution vulnerability in ipmitool"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "ipmitool",
"version": {
"version_data": [
{
"version_affected": "\u003c",
"version_value": "\u003c 1.8.19"
}
]
}
}
]
},
"vendor_name": "ipmitool"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "It\u0027s been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged user. This problem is fixed in version 1.8.19."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-120 Buffer Overflow"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp",
"refsource": "CONFIRM",
"url": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp"
},
{
"name": "https://github.com/ipmitool/ipmitool/commit/e824c23316ae50beb7f7488f2055ac65e8b341f2",
"refsource": "MISC",
"url": "https://github.com/ipmitool/ipmitool/commit/e824c23316ae50beb7f7488f2055ac65e8b341f2"
},
{
"name": "[debian-lts-announce] 20200209 [SECURITY] [DLA 2098-1] ipmitool security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00006.html"
},
{
"name": "FEDORA-2020-92cc67ff5a",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RYYEKUAUTCWICM77HOEGZDVVEUJLP4BP/"
},
{
"name": "FEDORA-2020-eb0cf4d268",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/K2BPW66KDP4H36AGZXLED57A3O2Y6EQW/"
},
{
"name": "openSUSE-SU-2020:0247",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00031.html"
},
{
"name": "GLSA-202101-03",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202101-03"
},
{
"name": "[debian-lts-announce] 20210630 [SECURITY] [DLA 2699-1] ipmitool security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/06/msg00029.html"
}
]
},
"source": {
"advisory": "GHSA-g659-9qxw-p7cp",
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2020-5208",
"datePublished": "2020-02-05T14:00:19.000Z",
"dateReserved": "2020-01-02T00:00:00.000Z",
"dateUpdated": "2024-08-04T08:22:08.968Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2020-5208",
"date": "2026-06-03",
"epss": "0.01945",
"percentile": "0.83769"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2020-5208\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2020-02-05T14:15:11.420\",\"lastModified\":\"2024-11-21T05:33:40.930\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"It\u0027s been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged user. This problem is fixed in version 1.8.19.\"},{\"lang\":\"es\",\"value\":\"Se detect\u00f3 que varias funciones en ipmitool versiones anteriores a 1.8.19, descuidan la comprobaci\u00f3n apropiada de los datos recibidos desde una parte de la LAN remota, lo que puede conllevar a desbordamientos de b\u00fafer y potencialmente a una ejecuci\u00f3n de c\u00f3digo remota en el lado de ipmitool. Esto es especialmente peligroso si ipmitool se ejecuta como un usuario privilegiado. Este problema es corregido en la versi\u00f3n 1.8.19.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N\",\"baseScore\":7.7,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.3,\"impactScore\":5.8},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:P/I:P/A:P\",\"baseScore\":6.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-120\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-120\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ipmitool_project:ipmitool:1.8.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A93E0CF-4164-457E-8399-9ECCA4925537\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97A4B8DF-58DA-4AB6-A1F9-331B36409BA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80F0FA5D-8D3B-4C0E-81E2-87998286AF33\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B620311B-34A3-48A6-82DF-6F078D7A4493\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00031.html\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/ipmitool/ipmitool/commit/e824c23316ae50beb7f7488f2055ac65e8b341f2\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/02/msg00006.html\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/06/msg00029.html\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K2BPW66KDP4H36AGZXLED57A3O2Y6EQW/\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RYYEKUAUTCWICM77HOEGZDVVEUJLP4BP/\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://security.gentoo.org/glsa/202101-03\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00031.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/ipmitool/ipmitool/commit/e824c23316ae50beb7f7488f2055ac65e8b341f2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/02/msg00006.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/06/msg00029.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/K2BPW66KDP4H36AGZXLED57A3O2Y6EQW/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RYYEKUAUTCWICM77HOEGZDVVEUJLP4BP/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/202101-03\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
RHSA-2020:0981
Vulnerability from csaf_redhat - Published: 2020-03-26 14:51 - Updated: 2025-11-21 18:12Summary
Red Hat Security Advisory: ipmitool security update
Severity
Important
Notes
Topic: An update for ipmitool is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.
Security Fix(es):
* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.
8.1 (High)
Affected products
Fixed
22 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:exchange-bmc-os-info-0:1.8.18-12.el8_1.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
9 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for ipmitool is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.\n\nSecurity Fix(es):\n\n* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:0981",
"url": "https://access.redhat.com/errata/RHSA-2020:0981"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0981.json"
}
],
"title": "Red Hat Security Advisory: ipmitool security update",
"tracking": {
"current_release_date": "2025-11-21T18:12:56+00:00",
"generator": {
"date": "2025-11-21T18:12:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:0981",
"initial_release_date": "2020-03-26T14:51:07+00:00",
"revision_history": [
{
"date": "2020-03-26T14:51:07+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-03-26T14:51:07+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:12:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "exchange-bmc-os-info-0:1.8.18-12.el8_1.noarch",
"product": {
"name": "exchange-bmc-os-info-0:1.8.18-12.el8_1.noarch",
"product_id": "exchange-bmc-os-info-0:1.8.18-12.el8_1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/exchange-bmc-os-info@1.8.18-12.el8_1?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmievd-0:1.8.18-12.el8_1.ppc64le",
"product": {
"name": "ipmievd-0:1.8.18-12.el8_1.ppc64le",
"product_id": "ipmievd-0:1.8.18-12.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmievd@1.8.18-12.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-12.el8_1.ppc64le",
"product": {
"name": "ipmitool-0:1.8.18-12.el8_1.ppc64le",
"product_id": "ipmitool-0:1.8.18-12.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-12.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debugsource-0:1.8.18-12.el8_1.ppc64le",
"product": {
"name": "ipmitool-debugsource-0:1.8.18-12.el8_1.ppc64le",
"product_id": "ipmitool-debugsource-0:1.8.18-12.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debugsource@1.8.18-12.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ipmievd-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"product": {
"name": "ipmievd-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"product_id": "ipmievd-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmievd-debuginfo@1.8.18-12.el8_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"product_id": "ipmitool-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-12.el8_1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmievd-0:1.8.18-12.el8_1.s390x",
"product": {
"name": "ipmievd-0:1.8.18-12.el8_1.s390x",
"product_id": "ipmievd-0:1.8.18-12.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmievd@1.8.18-12.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-12.el8_1.s390x",
"product": {
"name": "ipmitool-0:1.8.18-12.el8_1.s390x",
"product_id": "ipmitool-0:1.8.18-12.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-12.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debugsource-0:1.8.18-12.el8_1.s390x",
"product": {
"name": "ipmitool-debugsource-0:1.8.18-12.el8_1.s390x",
"product_id": "ipmitool-debugsource-0:1.8.18-12.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debugsource@1.8.18-12.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ipmievd-debuginfo-0:1.8.18-12.el8_1.s390x",
"product": {
"name": "ipmievd-debuginfo-0:1.8.18-12.el8_1.s390x",
"product_id": "ipmievd-debuginfo-0:1.8.18-12.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmievd-debuginfo@1.8.18-12.el8_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-12.el8_1.s390x",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-12.el8_1.s390x",
"product_id": "ipmitool-debuginfo-0:1.8.18-12.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-12.el8_1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmievd-0:1.8.18-12.el8_1.x86_64",
"product": {
"name": "ipmievd-0:1.8.18-12.el8_1.x86_64",
"product_id": "ipmievd-0:1.8.18-12.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmievd@1.8.18-12.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-12.el8_1.x86_64",
"product": {
"name": "ipmitool-0:1.8.18-12.el8_1.x86_64",
"product_id": "ipmitool-0:1.8.18-12.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-12.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debugsource-0:1.8.18-12.el8_1.x86_64",
"product": {
"name": "ipmitool-debugsource-0:1.8.18-12.el8_1.x86_64",
"product_id": "ipmitool-debugsource-0:1.8.18-12.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debugsource@1.8.18-12.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ipmievd-debuginfo-0:1.8.18-12.el8_1.x86_64",
"product": {
"name": "ipmievd-debuginfo-0:1.8.18-12.el8_1.x86_64",
"product_id": "ipmievd-debuginfo-0:1.8.18-12.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmievd-debuginfo@1.8.18-12.el8_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-12.el8_1.x86_64",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-12.el8_1.x86_64",
"product_id": "ipmitool-debuginfo-0:1.8.18-12.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-12.el8_1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmievd-0:1.8.18-12.el8_1.aarch64",
"product": {
"name": "ipmievd-0:1.8.18-12.el8_1.aarch64",
"product_id": "ipmievd-0:1.8.18-12.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmievd@1.8.18-12.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-12.el8_1.aarch64",
"product": {
"name": "ipmitool-0:1.8.18-12.el8_1.aarch64",
"product_id": "ipmitool-0:1.8.18-12.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-12.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debugsource-0:1.8.18-12.el8_1.aarch64",
"product": {
"name": "ipmitool-debugsource-0:1.8.18-12.el8_1.aarch64",
"product_id": "ipmitool-debugsource-0:1.8.18-12.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debugsource@1.8.18-12.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "ipmievd-debuginfo-0:1.8.18-12.el8_1.aarch64",
"product": {
"name": "ipmievd-debuginfo-0:1.8.18-12.el8_1.aarch64",
"product_id": "ipmievd-debuginfo-0:1.8.18-12.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmievd-debuginfo@1.8.18-12.el8_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-12.el8_1.aarch64",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-12.el8_1.aarch64",
"product_id": "ipmitool-debuginfo-0:1.8.18-12.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-12.el8_1?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-12.el8_1.src",
"product": {
"name": "ipmitool-0:1.8.18-12.el8_1.src",
"product_id": "ipmitool-0:1.8.18-12.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-12.el8_1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-12.el8_1.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:exchange-bmc-os-info-0:1.8.18-12.el8_1.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-12.el8_1.noarch",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmievd-0:1.8.18-12.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.aarch64"
},
"product_reference": "ipmievd-0:1.8.18-12.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmievd-0:1.8.18-12.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.ppc64le"
},
"product_reference": "ipmievd-0:1.8.18-12.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmievd-0:1.8.18-12.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.s390x"
},
"product_reference": "ipmievd-0:1.8.18-12.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmievd-0:1.8.18-12.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.x86_64"
},
"product_reference": "ipmievd-0:1.8.18-12.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmievd-debuginfo-0:1.8.18-12.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.aarch64"
},
"product_reference": "ipmievd-debuginfo-0:1.8.18-12.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmievd-debuginfo-0:1.8.18-12.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.ppc64le"
},
"product_reference": "ipmievd-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmievd-debuginfo-0:1.8.18-12.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.s390x"
},
"product_reference": "ipmievd-debuginfo-0:1.8.18-12.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmievd-debuginfo-0:1.8.18-12.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.x86_64"
},
"product_reference": "ipmievd-debuginfo-0:1.8.18-12.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-12.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.aarch64"
},
"product_reference": "ipmitool-0:1.8.18-12.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-12.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-12.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-12.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.s390x"
},
"product_reference": "ipmitool-0:1.8.18-12.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-12.el8_1.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.src"
},
"product_reference": "ipmitool-0:1.8.18-12.el8_1.src",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-12.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-12.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-12.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.aarch64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-12.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-12.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-12.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-12.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-12.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-12.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debugsource-0:1.8.18-12.el8_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.aarch64"
},
"product_reference": "ipmitool-debugsource-0:1.8.18-12.el8_1.aarch64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debugsource-0:1.8.18-12.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.ppc64le"
},
"product_reference": "ipmitool-debugsource-0:1.8.18-12.el8_1.ppc64le",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debugsource-0:1.8.18-12.el8_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.s390x"
},
"product_reference": "ipmitool-debugsource-0:1.8.18-12.el8_1.s390x",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debugsource-0:1.8.18-12.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.x86_64"
},
"product_reference": "ipmitool-debugsource-0:1.8.18-12.el8_1.x86_64",
"relates_to_product_reference": "AppStream-8.1.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-5208",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2020-02-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1798721"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ipmitool package distributed with Red Hat Enterprise Linux versions are compiled using gcc\u0027s stack-protector feature. The stack canary generated by this feature helps mitigating any remote code execution attacks for this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.1.0.Z.MAIN.EUS:exchange-bmc-os-info-0:1.8.18-12.el8_1.noarch",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-5208"
},
{
"category": "external",
"summary": "RHBZ#1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-5208",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-5208"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208"
},
{
"category": "external",
"summary": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp",
"url": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp"
}
],
"release_date": "2020-02-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-26T14:51:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the IPMI event daemon (ipmievd) will be restarted automatically.",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:exchange-bmc-os-info-0:1.8.18-12.el8_1.noarch",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0981"
},
{
"category": "workaround",
"details": "There\u0027s no mitigation available for this issue, although a few actions help to reduce the attack risk:\n\n1) Avoid to run `ipmitool` as privileged user;\n2) Avoid to run `ipmitool` against non-trusted IPMI-enabled devices;",
"product_ids": [
"AppStream-8.1.0.Z.MAIN.EUS:exchange-bmc-os-info-0:1.8.18-12.el8_1.noarch",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.1.0.Z.MAIN.EUS:exchange-bmc-os-info-0:1.8.18-12.el8_1.noarch",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmievd-debuginfo-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.src",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debuginfo-0:1.8.18-12.el8_1.x86_64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.aarch64",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.ppc64le",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.s390x",
"AppStream-8.1.0.Z.MAIN.EUS:ipmitool-debugsource-0:1.8.18-12.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c"
}
]
}
RHSA-2020:0984
Vulnerability from csaf_redhat - Published: 2020-03-26 20:32 - Updated: 2025-11-21 18:12Summary
Red Hat Security Advisory: ipmitool security update
Severity
Important
Notes
Topic: An update for ipmitool is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.
Security Fix(es):
* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.
8.1 (High)
Affected products
Fixed
66 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7ComputeNode-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
9 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for ipmitool is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.\n\nSecurity Fix(es):\n\n* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:0984",
"url": "https://access.redhat.com/errata/RHSA-2020:0984"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_0984.json"
}
],
"title": "Red Hat Security Advisory: ipmitool security update",
"tracking": {
"current_release_date": "2025-11-21T18:12:57+00:00",
"generator": {
"date": "2025-11-21T18:12:57+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:0984",
"initial_release_date": "2020-03-26T20:32:43+00:00",
"revision_history": [
{
"date": "2020-03-26T20:32:43+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-03-26T20:32:43+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:12:57+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_7.x86_64",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_7.x86_64",
"product_id": "ipmitool-0:1.8.18-9.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"product_id": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-9.el7_7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_7.src",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_7.src",
"product_id": "ipmitool-0:1.8.18-9.el7_7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"product": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"product_id": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bmc-snmp-proxy@1.8.18-9.el7_7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"product": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"product_id": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/exchange-bmc-os-info@1.8.18-9.el7_7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_7.s390x",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_7.s390x",
"product_id": "ipmitool-0:1.8.18-9.el7_7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"product_id": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-9.el7_7?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64",
"product_id": "ipmitool-0:1.8.18-9.el7_7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_7?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"product_id": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-9.el7_7?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64le",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64le",
"product_id": "ipmitool-0:1.8.18-9.el7_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"product_id": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-9.el7_7?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.s390x",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.src as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.src",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode (v. 7)",
"product_id": "7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.src",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)",
"product_id": "7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.ppc64",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.ppc64le",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.s390x",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.src as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.src",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"relates_to_product_reference": "7Server-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"relates_to_product_reference": "7Server-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"relates_to_product_reference": "7Server-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.s390x",
"relates_to_product_reference": "7Server-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.src",
"relates_to_product_reference": "7Server-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"relates_to_product_reference": "7Server-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"relates_to_product_reference": "7Server-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"relates_to_product_reference": "7Server-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
"product_id": "7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"relates_to_product_reference": "7Server-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.ppc64",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.ppc64le",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.s390x",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.src",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.x86_64",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"relates_to_product_reference": "7Workstation-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"relates_to_product_reference": "7Workstation-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"relates_to_product_reference": "7Workstation-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.src",
"relates_to_product_reference": "7Workstation-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"relates_to_product_reference": "7Workstation-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"relates_to_product_reference": "7Workstation-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"relates_to_product_reference": "7Workstation-optional-7.7.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)",
"product_id": "7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"relates_to_product_reference": "7Workstation-optional-7.7.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-5208",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2020-02-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1798721"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ipmitool package distributed with Red Hat Enterprise Linux versions are compiled using gcc\u0027s stack-protector feature. The stack canary generated by this feature helps mitigating any remote code execution attacks for this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7ComputeNode-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Server-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Server-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Server-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Server-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Workstation-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Workstation-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Workstation-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Workstation-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-5208"
},
{
"category": "external",
"summary": "RHBZ#1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-5208",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-5208"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208"
},
{
"category": "external",
"summary": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp",
"url": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp"
}
],
"release_date": "2020-02-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-03-26T20:32:43+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the IPMI event daemon (ipmievd) will be restarted automatically.",
"product_ids": [
"7ComputeNode-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7ComputeNode-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Server-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Server-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Server-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Server-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Workstation-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Workstation-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Workstation-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Workstation-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:0984"
},
{
"category": "workaround",
"details": "There\u0027s no mitigation available for this issue, although a few actions help to reduce the attack risk:\n\n1) Avoid to run `ipmitool` as privileged user;\n2) Avoid to run `ipmitool` against non-trusted IPMI-enabled devices;",
"product_ids": [
"7ComputeNode-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7ComputeNode-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Server-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Server-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Server-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Server-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Workstation-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Workstation-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Workstation-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Workstation-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7ComputeNode-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7ComputeNode-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7ComputeNode-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7ComputeNode-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Server-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Server-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Server-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Server-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Server-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Server-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Server-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Server-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Workstation-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Workstation-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Workstation-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Workstation-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64",
"7Workstation-optional-7.7.Z:bmc-snmp-proxy-0:1.8.18-9.el7_7.noarch",
"7Workstation-optional-7.7.Z:exchange-bmc-os-info-0:1.8.18-9.el7_7.noarch",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.s390x",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.src",
"7Workstation-optional-7.7.Z:ipmitool-0:1.8.18-9.el7_7.x86_64",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.ppc64le",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.s390x",
"7Workstation-optional-7.7.Z:ipmitool-debuginfo-0:1.8.18-9.el7_7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c"
}
]
}
RHSA-2020:1331
Vulnerability from csaf_redhat - Published: 2020-04-06 17:00 - Updated: 2025-11-21 18:13Summary
Red Hat Security Advisory: ipmitool security update
Severity
Important
Notes
Topic: An update for ipmitool is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.
Security Fix(es):
* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.
8.1 (High)
Affected products
Fixed
36 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
9 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for ipmitool is now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.\n\nSecurity Fix(es):\n\n* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:1331",
"url": "https://access.redhat.com/errata/RHSA-2020:1331"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_1331.json"
}
],
"title": "Red Hat Security Advisory: ipmitool security update",
"tracking": {
"current_release_date": "2025-11-21T18:13:24+00:00",
"generator": {
"date": "2025-11-21T18:13:24+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:1331",
"initial_release_date": "2020-04-06T17:00:33+00:00",
"revision_history": [
{
"date": "2020-04-06T17:00:33+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-04-06T17:00:33+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:13:24+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.15-3.el6_10.i686",
"product": {
"name": "ipmitool-0:1.8.15-3.el6_10.i686",
"product_id": "ipmitool-0:1.8.15-3.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.15-3.el6_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"product": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"product_id": "ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.15-3.el6_10?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.15-3.el6_10.x86_64",
"product": {
"name": "ipmitool-0:1.8.15-3.el6_10.x86_64",
"product_id": "ipmitool-0:1.8.15-3.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.15-3.el6_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"product": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"product_id": "ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.15-3.el6_10?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.15-3.el6_10.src",
"product": {
"name": "ipmitool-0:1.8.15-3.el6_10.src",
"product_id": "ipmitool-0:1.8.15-3.el6_10.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.15-3.el6_10?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.15-3.el6_10.s390x",
"product": {
"name": "ipmitool-0:1.8.15-3.el6_10.s390x",
"product_id": "ipmitool-0:1.8.15-3.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.15-3.el6_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"product": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"product_id": "ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.15-3.el6_10?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.15-3.el6_10.ppc64",
"product": {
"name": "ipmitool-0:1.8.15-3.el6_10.ppc64",
"product_id": "ipmitool-0:1.8.15-3.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.15-3.el6_10?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"product": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"product_id": "ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.15-3.el6_10?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.i686",
"relates_to_product_reference": "6Client-optional-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.ppc64",
"relates_to_product_reference": "6Client-optional-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.s390x",
"relates_to_product_reference": "6Client-optional-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.src as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.src"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.src",
"relates_to_product_reference": "6Client-optional-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.x86_64",
"relates_to_product_reference": "6Client-optional-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.i686 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"relates_to_product_reference": "6Client-optional-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"relates_to_product_reference": "6Client-optional-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"relates_to_product_reference": "6Client-optional-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64 as a component of Red Hat Enterprise Linux Desktop Optional (v. 6)",
"product_id": "6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"relates_to_product_reference": "6Client-optional-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.src"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.src",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.i686 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64 as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"relates_to_product_reference": "6ComputeNode-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.i686",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.ppc64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.s390x",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.src"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.src",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.x86_64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.i686 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64 as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"relates_to_product_reference": "6Server-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.i686",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.s390x",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.src"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.src",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-3.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64"
},
"product_reference": "ipmitool-0:1.8.15-3.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"relates_to_product_reference": "6Workstation-6.10.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"relates_to_product_reference": "6Workstation-6.10.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-5208",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2020-02-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1798721"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ipmitool package distributed with Red Hat Enterprise Linux versions are compiled using gcc\u0027s stack-protector feature. The stack canary generated by this feature helps mitigating any remote code execution attacks for this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-5208"
},
{
"category": "external",
"summary": "RHBZ#1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-5208",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-5208"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208"
},
{
"category": "external",
"summary": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp",
"url": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp"
}
],
"release_date": "2020-02-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-06T17:00:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the IPMI event daemon (ipmievd) will be restarted automatically.",
"product_ids": [
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1331"
},
{
"category": "workaround",
"details": "There\u0027s no mitigation available for this issue, although a few actions help to reduce the attack risk:\n\n1) Avoid to run `ipmitool` as privileged user;\n2) Avoid to run `ipmitool` against non-trusted IPMI-enabled devices;",
"product_ids": [
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6Client-optional-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6Client-optional-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6ComputeNode-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6ComputeNode-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6Server-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6Server-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.i686",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.ppc64",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.s390x",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.src",
"6Workstation-6.10.z:ipmitool-0:1.8.15-3.el6_10.x86_64",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.i686",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.ppc64",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.s390x",
"6Workstation-6.10.z:ipmitool-debuginfo-0:1.8.15-3.el6_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c"
}
]
}
RHSA-2020:1486
Vulnerability from csaf_redhat - Published: 2020-04-16 08:48 - Updated: 2025-11-21 18:13Summary
Red Hat Security Advisory: ipmitool security update
Severity
Important
Notes
Topic: An update for ipmitool is now available for Red Hat Enterprise Linux 7.5 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.
Security Fix(es):
* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.
8.1 (High)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7ComputeNode-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
9 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for ipmitool is now available for Red Hat Enterprise Linux 7.5 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.\n\nSecurity Fix(es):\n\n* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:1486",
"url": "https://access.redhat.com/errata/RHSA-2020:1486"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_1486.json"
}
],
"title": "Red Hat Security Advisory: ipmitool security update",
"tracking": {
"current_release_date": "2025-11-21T18:13:38+00:00",
"generator": {
"date": "2025-11-21T18:13:38+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:1486",
"initial_release_date": "2020-04-16T08:48:51+00:00",
"revision_history": [
{
"date": "2020-04-16T08:48:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-04-16T08:48:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:13:38+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.5)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.5)",
"product_id": "7ComputeNode-7.5.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.5::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.5)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.5)",
"product_id": "7ComputeNode-optional-7.5.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.5::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-7.5.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.5::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.5)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.5)",
"product_id": "7Server-optional-7.5.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.5::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_5.x86_64",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_5.x86_64",
"product_id": "ipmitool-0:1.8.18-9.el7_5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_5?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"product_id": "ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-9.el7_5?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_5.src",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_5.src",
"product_id": "ipmitool-0:1.8.18-9.el7_5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"product": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"product_id": "bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bmc-snmp-proxy@1.8.18-9.el7_5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"product": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"product_id": "exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/exchange-bmc-os-info@1.8.18-9.el7_5?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_5.s390x",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_5.s390x",
"product_id": "ipmitool-0:1.8.18-9.el7_5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_5?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"product_id": "ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-9.el7_5?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_5.ppc64",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_5.ppc64",
"product_id": "ipmitool-0:1.8.18-9.el7_5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_5?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"product_id": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-9.el7_5?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_5.ppc64le",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_5.ppc64le",
"product_id": "ipmitool-0:1.8.18-9.el7_5.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_5?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"product_id": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-9.el7_5?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.5)",
"product_id": "7ComputeNode-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"relates_to_product_reference": "7ComputeNode-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.5)",
"product_id": "7ComputeNode-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"relates_to_product_reference": "7ComputeNode-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.5)",
"product_id": "7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.5)",
"product_id": "7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.s390x as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.5)",
"product_id": "7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.s390x",
"relates_to_product_reference": "7ComputeNode-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.5)",
"product_id": "7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.src",
"relates_to_product_reference": "7ComputeNode-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.5)",
"product_id": "7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.5)",
"product_id": "7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"relates_to_product_reference": "7ComputeNode-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.5)",
"product_id": "7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.5)",
"product_id": "7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"relates_to_product_reference": "7ComputeNode-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.5)",
"product_id": "7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"relates_to_product_reference": "7ComputeNode-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.5)",
"product_id": "7ComputeNode-optional-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.5)",
"product_id": "7ComputeNode-optional-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.5)",
"product_id": "7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.5)",
"product_id": "7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.5)",
"product_id": "7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.5)",
"product_id": "7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.src",
"relates_to_product_reference": "7ComputeNode-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.5)",
"product_id": "7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.5)",
"product_id": "7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.5)",
"product_id": "7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.5)",
"product_id": "7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.5)",
"product_id": "7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"relates_to_product_reference": "7Server-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"relates_to_product_reference": "7Server-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.ppc64",
"relates_to_product_reference": "7Server-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.ppc64le",
"relates_to_product_reference": "7Server-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.s390x",
"relates_to_product_reference": "7Server-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.src",
"relates_to_product_reference": "7Server-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.x86_64",
"relates_to_product_reference": "7Server-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"relates_to_product_reference": "7Server-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"relates_to_product_reference": "7Server-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"relates_to_product_reference": "7Server-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"relates_to_product_reference": "7Server-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.5)",
"product_id": "7Server-optional-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"relates_to_product_reference": "7Server-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.5)",
"product_id": "7Server-optional-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"relates_to_product_reference": "7Server-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.5)",
"product_id": "7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.ppc64",
"relates_to_product_reference": "7Server-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.5)",
"product_id": "7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.5)",
"product_id": "7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.s390x",
"relates_to_product_reference": "7Server-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.5)",
"product_id": "7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.src",
"relates_to_product_reference": "7Server-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_5.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.5)",
"product_id": "7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_5.x86_64",
"relates_to_product_reference": "7Server-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.5)",
"product_id": "7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"relates_to_product_reference": "7Server-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.5)",
"product_id": "7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"relates_to_product_reference": "7Server-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.5)",
"product_id": "7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"relates_to_product_reference": "7Server-optional-7.5.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.5)",
"product_id": "7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"relates_to_product_reference": "7Server-optional-7.5.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-5208",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2020-02-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1798721"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ipmitool package distributed with Red Hat Enterprise Linux versions are compiled using gcc\u0027s stack-protector feature. The stack canary generated by this feature helps mitigating any remote code execution attacks for this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"7ComputeNode-optional-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-optional-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"7Server-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7Server-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"7Server-optional-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7Server-optional-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-5208"
},
{
"category": "external",
"summary": "RHBZ#1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-5208",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-5208"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208"
},
{
"category": "external",
"summary": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp",
"url": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp"
}
],
"release_date": "2020-02-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-16T08:48:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the IPMI event daemon (ipmievd) will be restarted automatically.",
"product_ids": [
"7ComputeNode-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"7ComputeNode-optional-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-optional-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"7Server-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7Server-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"7Server-optional-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7Server-optional-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1486"
},
{
"category": "workaround",
"details": "There\u0027s no mitigation available for this issue, although a few actions help to reduce the attack risk:\n\n1) Avoid to run `ipmitool` as privileged user;\n2) Avoid to run `ipmitool` against non-trusted IPMI-enabled devices;",
"product_ids": [
"7ComputeNode-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"7ComputeNode-optional-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-optional-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"7Server-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7Server-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"7Server-optional-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7Server-optional-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7ComputeNode-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"7ComputeNode-optional-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-optional-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7ComputeNode-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7ComputeNode-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"7Server-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7Server-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7Server-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7Server-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64",
"7Server-optional-7.5.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_5.noarch",
"7Server-optional-7.5.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_5.noarch",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.ppc64le",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.s390x",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.src",
"7Server-optional-7.5.EUS:ipmitool-0:1.8.18-9.el7_5.x86_64",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.ppc64le",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.s390x",
"7Server-optional-7.5.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c"
}
]
}
RHSA-2020:2213
Vulnerability from csaf_redhat - Published: 2020-05-19 22:29 - Updated: 2025-11-21 18:14Summary
Red Hat Security Advisory: ipmitool security update
Severity
Important
Notes
Topic: An update for ipmitool is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.
Security Fix(es):
* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.
8.1 (High)
Affected products
Fixed
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-7.4.AUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.AUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.AUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.E4S:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.E4S:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.TUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.TUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.4.TUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.AUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.AUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.AUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.E4S:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.E4S:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.TUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.TUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.4.TUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
9 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for ipmitool is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.\n\nSecurity Fix(es):\n\n* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:2213",
"url": "https://access.redhat.com/errata/RHSA-2020:2213"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2213.json"
}
],
"title": "Red Hat Security Advisory: ipmitool security update",
"tracking": {
"current_release_date": "2025-11-21T18:14:23+00:00",
"generator": {
"date": "2025-11-21T18:14:23+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:2213",
"initial_release_date": "2020-05-19T22:29:24+00:00",
"revision_history": [
{
"date": "2020-05-19T22:29:24+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-05-19T22:29:24+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:14:23+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:7.4::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:7.4::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"product": {
"name": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"product_id": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bmc-snmp-proxy@1.8.18-6.el7_4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"product": {
"name": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"product_id": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/exchange-bmc-os-info@1.8.18-6.el7_4?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-6.el7_4.x86_64",
"product": {
"name": "ipmitool-0:1.8.18-6.el7_4.x86_64",
"product_id": "ipmitool-0:1.8.18-6.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-6.el7_4?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"product_id": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-6.el7_4?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-6.el7_4.src",
"product": {
"name": "ipmitool-0:1.8.18-6.el7_4.src",
"product_id": "ipmitool-0:1.8.18-6.el7_4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-6.el7_4?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-6.el7_4.ppc64le",
"product": {
"name": "ipmitool-0:1.8.18-6.el7_4.ppc64le",
"product_id": "ipmitool-0:1.8.18-6.el7_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-6.el7_4?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le",
"product_id": "ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-6.el7_4?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.src"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.src",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.4)",
"product_id": "7Server-7.4.AUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.src as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.src"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.src",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.4)",
"product_id": "7Server-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.src as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.src"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.src",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.4)",
"product_id": "7Server-7.4.TUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"relates_to_product_reference": "7Server-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.src"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.src",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.4)",
"product_id": "7Server-optional-7.4.AUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.src as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.src"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.src",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.4)",
"product_id": "7Server-optional-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.src"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.src",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-6.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-6.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.4)",
"product_id": "7Server-optional-7.4.TUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"relates_to_product_reference": "7Server-optional-7.4.TUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-5208",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2020-02-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1798721"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ipmitool package distributed with Red Hat Enterprise Linux versions are compiled using gcc\u0027s stack-protector feature. The stack canary generated by this feature helps mitigating any remote code execution attacks for this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.4.AUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.AUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.AUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.E4S:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.E4S:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.ppc64le",
"7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le",
"7Server-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.TUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.TUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.TUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.AUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.AUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-optional-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.AUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.E4S:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.E4S:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.ppc64le",
"7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le",
"7Server-optional-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.TUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.TUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-optional-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.TUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-5208"
},
{
"category": "external",
"summary": "RHBZ#1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-5208",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-5208"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208"
},
{
"category": "external",
"summary": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp",
"url": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp"
}
],
"release_date": "2020-02-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-05-19T22:29:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the IPMI event daemon (ipmievd) will be restarted automatically.",
"product_ids": [
"7Server-7.4.AUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.AUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.AUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.E4S:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.E4S:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.ppc64le",
"7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le",
"7Server-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.TUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.TUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.TUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.AUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.AUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-optional-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.AUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.E4S:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.E4S:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.ppc64le",
"7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le",
"7Server-optional-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.TUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.TUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-optional-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.TUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:2213"
},
{
"category": "workaround",
"details": "There\u0027s no mitigation available for this issue, although a few actions help to reduce the attack risk:\n\n1) Avoid to run `ipmitool` as privileged user;\n2) Avoid to run `ipmitool` against non-trusted IPMI-enabled devices;",
"product_ids": [
"7Server-7.4.AUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.AUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.AUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.E4S:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.E4S:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.ppc64le",
"7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le",
"7Server-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.TUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.TUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.TUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.AUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.AUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-optional-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.AUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.E4S:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.E4S:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.ppc64le",
"7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le",
"7Server-optional-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.TUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.TUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-optional-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.TUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.4.AUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.AUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.AUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.E4S:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.E4S:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.ppc64le",
"7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le",
"7Server-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.TUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.TUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-7.4.TUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.AUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.AUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-optional-7.4.AUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.AUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.E4S:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.E4S:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.ppc64le",
"7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-optional-7.4.E4S:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.ppc64le",
"7Server-optional-7.4.E4S:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.TUS:bmc-snmp-proxy-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.TUS:exchange-bmc-os-info-0:1.8.18-6.el7_4.noarch",
"7Server-optional-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.src",
"7Server-optional-7.4.TUS:ipmitool-0:1.8.18-6.el7_4.x86_64",
"7Server-optional-7.4.TUS:ipmitool-debuginfo-0:1.8.18-6.el7_4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c"
}
]
}
RHSA-2020:2276
Vulnerability from csaf_redhat - Published: 2020-05-26 20:11 - Updated: 2025-11-21 18:14Summary
Red Hat Security Advisory: ipmitool security update
Severity
Important
Notes
Topic: An update for ipmitool is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support, Red Hat Enterprise Linux 7.3 Telco Extended Update Support, and Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.
Security Fix(es):
* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.
8.1 (High)
Affected products
Fixed
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-7.3.AUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.AUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.AUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.E4S:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.E4S:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.TUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.TUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.3.TUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.AUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.AUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.AUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.E4S:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.E4S:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.TUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.TUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.3.TUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
9 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for ipmitool is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support, Red Hat Enterprise Linux 7.3 Telco Extended Update Support, and Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.\n\nSecurity Fix(es):\n\n* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:2276",
"url": "https://access.redhat.com/errata/RHSA-2020:2276"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2276.json"
}
],
"title": "Red Hat Security Advisory: ipmitool security update",
"tracking": {
"current_release_date": "2025-11-21T18:14:33+00:00",
"generator": {
"date": "2025-11-21T18:14:33+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:2276",
"initial_release_date": "2020-05-26T20:11:34+00:00",
"revision_history": [
{
"date": "2020-05-26T20:11:34+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-05-26T20:11:34+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:14:33+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.3::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.3::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:7.3::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:7.3::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:7.3::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:7.3::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"product": {
"name": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"product_id": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bmc-snmp-proxy@1.8.15-8.el7_3?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"product": {
"name": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"product_id": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/exchange-bmc-os-info@1.8.15-8.el7_3?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.15-8.el7_3.x86_64",
"product": {
"name": "ipmitool-0:1.8.15-8.el7_3.x86_64",
"product_id": "ipmitool-0:1.8.15-8.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.15-8.el7_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"product": {
"name": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"product_id": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.15-8.el7_3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.15-8.el7_3.src",
"product": {
"name": "ipmitool-0:1.8.15-8.el7_3.src",
"product_id": "ipmitool-0:1.8.15-8.el7_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.15-8.el7_3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.15-8.el7_3.ppc64le",
"product": {
"name": "ipmitool-0:1.8.15-8.el7_3.ppc64le",
"product_id": "ipmitool-0:1.8.15-8.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.15-8.el7_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le",
"product": {
"name": "ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le",
"product_id": "ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.15-8.el7_3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.src"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.src",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.x86_64"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.3)",
"product_id": "7Server-7.3.AUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.ppc64le"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.ppc64le",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.src as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.src"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.src",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.x86_64"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server E4S (v. 7.3)",
"product_id": "7Server-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.src as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.src"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.src",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.x86_64"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server TUS (v. 7.3)",
"product_id": "7Server-7.3.TUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.src"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.src",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.x86_64"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.3)",
"product_id": "7Server-optional-7.3.AUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.ppc64le"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.src as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.src"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.src",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.x86_64"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional E4S (v. 7.3)",
"product_id": "7Server-optional-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.src as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.src"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.src",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.x86_64"
},
"product_reference": "ipmitool-0:1.8.15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64 as a component of Red Hat Enterprise Linux Server Optional TUS (v. 7.3)",
"product_id": "7Server-optional-7.3.TUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"relates_to_product_reference": "7Server-optional-7.3.TUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-5208",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2020-02-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1798721"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ipmitool package distributed with Red Hat Enterprise Linux versions are compiled using gcc\u0027s stack-protector feature. The stack canary generated by this feature helps mitigating any remote code execution attacks for this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.3.AUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.AUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.AUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.E4S:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.E4S:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.ppc64le",
"7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le",
"7Server-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.TUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.TUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.TUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.AUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.AUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-optional-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.AUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.E4S:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.E4S:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.ppc64le",
"7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le",
"7Server-optional-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.TUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.TUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-optional-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.TUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-5208"
},
{
"category": "external",
"summary": "RHBZ#1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-5208",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-5208"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208"
},
{
"category": "external",
"summary": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp",
"url": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp"
}
],
"release_date": "2020-02-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-05-26T20:11:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the IPMI event daemon (ipmievd) will be restarted automatically.",
"product_ids": [
"7Server-7.3.AUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.AUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.AUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.E4S:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.E4S:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.ppc64le",
"7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le",
"7Server-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.TUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.TUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.TUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.AUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.AUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-optional-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.AUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.E4S:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.E4S:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.ppc64le",
"7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le",
"7Server-optional-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.TUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.TUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-optional-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.TUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:2276"
},
{
"category": "workaround",
"details": "There\u0027s no mitigation available for this issue, although a few actions help to reduce the attack risk:\n\n1) Avoid to run `ipmitool` as privileged user;\n2) Avoid to run `ipmitool` against non-trusted IPMI-enabled devices;",
"product_ids": [
"7Server-7.3.AUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.AUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.AUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.E4S:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.E4S:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.ppc64le",
"7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le",
"7Server-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.TUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.TUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.TUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.AUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.AUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-optional-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.AUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.E4S:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.E4S:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.ppc64le",
"7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le",
"7Server-optional-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.TUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.TUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-optional-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.TUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.3.AUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.AUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.AUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.E4S:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.E4S:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.ppc64le",
"7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le",
"7Server-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.TUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.TUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-7.3.TUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.AUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.AUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-optional-7.3.AUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.AUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.E4S:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.E4S:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.ppc64le",
"7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-optional-7.3.E4S:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.ppc64le",
"7Server-optional-7.3.E4S:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.TUS:bmc-snmp-proxy-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.TUS:exchange-bmc-os-info-0:1.8.15-8.el7_3.noarch",
"7Server-optional-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.src",
"7Server-optional-7.3.TUS:ipmitool-0:1.8.15-8.el7_3.x86_64",
"7Server-optional-7.3.TUS:ipmitool-debuginfo-0:1.8.15-8.el7_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c"
}
]
}
RHSA-2020:2284
Vulnerability from csaf_redhat - Published: 2020-05-26 20:21 - Updated: 2025-11-21 18:14Summary
Red Hat Security Advisory: ipmitool security update
Severity
Important
Notes
Topic: An update for ipmitool is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.
Security Fix(es):
* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.
8.1 (High)
Affected products
Fixed
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-7.2.AUS:bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.2.AUS:exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.2.AUS:ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.2.AUS:bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.2.AUS:exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.2.AUS:ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
9 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for ipmitool is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.\n\nSecurity Fix(es):\n\n* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:2284",
"url": "https://access.redhat.com/errata/RHSA-2020:2284"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2284.json"
}
],
"title": "Red Hat Security Advisory: ipmitool security update",
"tracking": {
"current_release_date": "2025-11-21T18:14:29+00:00",
"generator": {
"date": "2025-11-21T18:14:29+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:2284",
"initial_release_date": "2020-05-26T20:21:37+00:00",
"revision_history": [
{
"date": "2020-05-26T20:21:37+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-05-26T20:21:37+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:14:29+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product": {
"name": "Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.2::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:7.2::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.13-10.el7_2.x86_64",
"product": {
"name": "ipmitool-0:1.8.13-10.el7_2.x86_64",
"product_id": "ipmitool-0:1.8.13-10.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.13-10.el7_2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64",
"product": {
"name": "ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64",
"product_id": "ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.13-10.el7_2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.13-10.el7_2.src",
"product": {
"name": "ipmitool-0:1.8.13-10.el7_2.src",
"product_id": "ipmitool-0:1.8.13-10.el7_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.13-10.el7_2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch",
"product": {
"name": "bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch",
"product_id": "bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bmc-snmp-proxy@1.8.13-10.el7_2?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch",
"product": {
"name": "exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch",
"product_id": "exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/exchange-bmc-os-info@1.8.13-10.el7_2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.13-10.el7_2.src as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.src"
},
"product_reference": "ipmitool-0:1.8.13-10.el7_2.src",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.13-10.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.x86_64"
},
"product_reference": "ipmitool-0:1.8.13-10.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server AUS (v. 7.2)",
"product_id": "7Server-7.2.AUS:ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64",
"relates_to_product_reference": "7Server-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.13-10.el7_2.src as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.src"
},
"product_reference": "ipmitool-0:1.8.13-10.el7_2.src",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.13-10.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.x86_64"
},
"product_reference": "ipmitool-0:1.8.13-10.el7_2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional AUS (v. 7.2)",
"product_id": "7Server-optional-7.2.AUS:ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64",
"relates_to_product_reference": "7Server-optional-7.2.AUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-5208",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2020-02-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1798721"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ipmitool package distributed with Red Hat Enterprise Linux versions are compiled using gcc\u0027s stack-protector feature. The stack canary generated by this feature helps mitigating any remote code execution attacks for this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-7.2.AUS:bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch",
"7Server-7.2.AUS:exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch",
"7Server-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.src",
"7Server-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.x86_64",
"7Server-7.2.AUS:ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64",
"7Server-optional-7.2.AUS:bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch",
"7Server-optional-7.2.AUS:exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch",
"7Server-optional-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.src",
"7Server-optional-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.x86_64",
"7Server-optional-7.2.AUS:ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-5208"
},
{
"category": "external",
"summary": "RHBZ#1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-5208",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-5208"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208"
},
{
"category": "external",
"summary": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp",
"url": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp"
}
],
"release_date": "2020-02-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-05-26T20:21:37+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the IPMI event daemon (ipmievd) will be restarted automatically.",
"product_ids": [
"7Server-7.2.AUS:bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch",
"7Server-7.2.AUS:exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch",
"7Server-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.src",
"7Server-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.x86_64",
"7Server-7.2.AUS:ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64",
"7Server-optional-7.2.AUS:bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch",
"7Server-optional-7.2.AUS:exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch",
"7Server-optional-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.src",
"7Server-optional-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.x86_64",
"7Server-optional-7.2.AUS:ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:2284"
},
{
"category": "workaround",
"details": "There\u0027s no mitigation available for this issue, although a few actions help to reduce the attack risk:\n\n1) Avoid to run `ipmitool` as privileged user;\n2) Avoid to run `ipmitool` against non-trusted IPMI-enabled devices;",
"product_ids": [
"7Server-7.2.AUS:bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch",
"7Server-7.2.AUS:exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch",
"7Server-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.src",
"7Server-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.x86_64",
"7Server-7.2.AUS:ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64",
"7Server-optional-7.2.AUS:bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch",
"7Server-optional-7.2.AUS:exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch",
"7Server-optional-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.src",
"7Server-optional-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.x86_64",
"7Server-optional-7.2.AUS:ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7Server-7.2.AUS:bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch",
"7Server-7.2.AUS:exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch",
"7Server-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.src",
"7Server-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.x86_64",
"7Server-7.2.AUS:ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64",
"7Server-optional-7.2.AUS:bmc-snmp-proxy-0:1.8.13-10.el7_2.noarch",
"7Server-optional-7.2.AUS:exchange-bmc-os-info-0:1.8.13-10.el7_2.noarch",
"7Server-optional-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.src",
"7Server-optional-7.2.AUS:ipmitool-0:1.8.13-10.el7_2.x86_64",
"7Server-optional-7.2.AUS:ipmitool-debuginfo-0:1.8.13-10.el7_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c"
}
]
}
RHSA-2020:2286
Vulnerability from csaf_redhat - Published: 2020-05-26 20:44 - Updated: 2025-11-21 18:14Summary
Red Hat Security Advisory: ipmitool security update
Severity
Important
Notes
Topic: An update for ipmitool is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.
Security Fix(es):
* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.
8.1 (High)
Affected products
Fixed
66 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7ComputeNode-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-Alt-7.6-EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-Alt-7.6-EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
9 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for ipmitool is now available for Red Hat Enterprise Linux 7.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The ipmitool packages contain a command-line utility for interfacing with devices that support the Intelligent Platform Management Interface (IPMI) specification. IPMI is an open standard for machine health, inventory, and remote power control.\n\nSecurity Fix(es):\n\n* ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c (CVE-2020-5208)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:2286",
"url": "https://access.redhat.com/errata/RHSA-2020:2286"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_2286.json"
}
],
"title": "Red Hat Security Advisory: ipmitool security update",
"tracking": {
"current_release_date": "2025-11-21T18:14:30+00:00",
"generator": {
"date": "2025-11-21T18:14:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:2286",
"initial_release_date": "2020-05-26T20:44:22+00:00",
"revision_history": [
{
"date": "2020-05-26T20:44:22+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-05-26T20:44:22+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:14:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product": {
"name": "Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:7.6::server"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"product": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"product_id": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bmc-snmp-proxy@1.8.18-9.el7_6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"product": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"product_id": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/exchange-bmc-os-info@1.8.18-9.el7_6?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_6.s390x",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_6.s390x",
"product_id": "ipmitool-0:1.8.18-9.el7_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"product_id": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-9.el7_6?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64le",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64le",
"product_id": "ipmitool-0:1.8.18-9.el7_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"product_id": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-9.el7_6?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_6.src",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_6.src",
"product_id": "ipmitool-0:1.8.18-9.el7_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_6.x86_64",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_6.x86_64",
"product_id": "ipmitool-0:1.8.18-9.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"product_id": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-9.el7_6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64",
"product": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64",
"product_id": "ipmitool-0:1.8.18-9.el7_6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool@1.8.18-9.el7_6?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"product": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"product_id": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipmitool-debuginfo@1.8.18-9.el7_6?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.s390x as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.s390x",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.src as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.src",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode EUS (v. 7.6)",
"product_id": "7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.src as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.src",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional EUS (v. 7.6)",
"product_id": "7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"relates_to_product_reference": "7ComputeNode-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.s390x",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.src as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.src",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"relates_to_product_reference": "7Server-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.s390x",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.src",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server (v. 7)",
"product_id": "7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"relates_to_product_reference": "7Server-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.s390x",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.src as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.src",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64 as a component of Red Hat Enterprise Linux Server Optional EUS (v. 7.6)",
"product_id": "7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-7.6.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch"
},
"product_reference": "bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch"
},
"product_reference": "exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.s390x"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.s390x",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.src as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.src"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.src",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-0:1.8.18-9.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.x86_64"
},
"product_reference": "ipmitool-0:1.8.18-9.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64 as a component of Red Hat Enterprise Linux for ARM and IBM Power LE (POWER9) Server Optional (v. 7)",
"product_id": "7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64"
},
"product_reference": "ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"relates_to_product_reference": "7Server-optional-Alt-7.6-EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-5208",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"discovery_date": "2020-02-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1798721"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in several functions of the IPMItool, where it failed to check data received from a LAN properly. An attacker could use this flaw to craft payloads, which can lead to a buffer overflow and also cause memory corruption, a denial of service, and remote code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The ipmitool package distributed with Red Hat Enterprise Linux versions are compiled using gcc\u0027s stack-protector feature. The stack canary generated by this feature helps mitigating any remote code execution attacks for this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7ComputeNode-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-Alt-7.6-EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-Alt-7.6-EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-optional-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-5208"
},
{
"category": "external",
"summary": "RHBZ#1798721",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798721"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-5208",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-5208"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-5208"
},
{
"category": "external",
"summary": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp",
"url": "https://github.com/ipmitool/ipmitool/security/advisories/GHSA-g659-9qxw-p7cp"
}
],
"release_date": "2020-02-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-05-26T20:44:22+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing this update, the IPMI event daemon (ipmievd) will be restarted automatically.",
"product_ids": [
"7ComputeNode-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-Alt-7.6-EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-Alt-7.6-EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-optional-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:2286"
},
{
"category": "workaround",
"details": "There\u0027s no mitigation available for this issue, although a few actions help to reduce the attack risk:\n\n1) Avoid to run `ipmitool` as privileged user;\n2) Avoid to run `ipmitool` against non-trusted IPMI-enabled devices;",
"product_ids": [
"7ComputeNode-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-Alt-7.6-EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-Alt-7.6-EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-optional-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"7ComputeNode-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7ComputeNode-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7ComputeNode-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7ComputeNode-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-Alt-7.6-EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-Alt-7.6-EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-7.6.EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-optional-7.6.EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-optional-7.6.EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-optional-7.6.EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:bmc-snmp-proxy-0:1.8.18-9.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:exchange-bmc-os-info-0:1.8.18-9.el7_6.noarch",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.s390x",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.src",
"7Server-optional-Alt-7.6-EUS:ipmitool-0:1.8.18-9.el7_6.x86_64",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.ppc64le",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.s390x",
"7Server-optional-Alt-7.6-EUS:ipmitool-debuginfo-0:1.8.18-9.el7_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "ipmitool: Buffer overflow in read_fru_area_section function in lib/ipmi_fru.c"
}
]
}
SUSE-SU-2020:0405-1
Vulnerability from csaf_suse - Published: 2020-02-19 08:30 - Updated: 2020-02-19 08:30Summary
Security update for ipmitool
Severity
Important
Notes
Title of the patch: Security update for ipmitool
Description of the patch: This update for ipmitool fixes the following security issue:
- CVE-2020-5208: Fixed several buffer overflows (bsc#1163026).
Patchnames: SUSE-2020-405,SUSE-SLE-Module-Basesystem-15-SP1-2020-405,SUSE-SLE-Module-Server-Applications-15-SP1-2020-405
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.1 (High)
Affected products
Recommended
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Server Applications 15 SP1:ipmitool-bmc-snmp-proxy-1.8.18-7.3.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ipmitool",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for ipmitool fixes the following security issue:\n\n- CVE-2020-5208: Fixed several buffer overflows (bsc#1163026).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2020-405,SUSE-SLE-Module-Basesystem-15-SP1-2020-405,SUSE-SLE-Module-Server-Applications-15-SP1-2020-405",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_0405-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:0405-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20200405-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:0405-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-February/006493.html"
},
{
"category": "self",
"summary": "SUSE Bug 1163026",
"url": "https://bugzilla.suse.com/1163026"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-5208 page",
"url": "https://www.suse.com/security/cve/CVE-2020-5208/"
}
],
"title": "Security update for ipmitool",
"tracking": {
"current_release_date": "2020-02-19T08:30:33Z",
"generator": {
"date": "2020-02-19T08:30:33Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:0405-1",
"initial_release_date": "2020-02-19T08:30:33Z",
"revision_history": [
{
"date": "2020-02-19T08:30:33Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-1.8.18-7.3.1.aarch64",
"product": {
"name": "ipmitool-1.8.18-7.3.1.aarch64",
"product_id": "ipmitool-1.8.18-7.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-1.8.18-7.3.1.i586",
"product": {
"name": "ipmitool-1.8.18-7.3.1.i586",
"product_id": "ipmitool-1.8.18-7.3.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-bmc-snmp-proxy-1.8.18-7.3.1.noarch",
"product": {
"name": "ipmitool-bmc-snmp-proxy-1.8.18-7.3.1.noarch",
"product_id": "ipmitool-bmc-snmp-proxy-1.8.18-7.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-1.8.18-7.3.1.ppc64le",
"product": {
"name": "ipmitool-1.8.18-7.3.1.ppc64le",
"product_id": "ipmitool-1.8.18-7.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-1.8.18-7.3.1.s390x",
"product": {
"name": "ipmitool-1.8.18-7.3.1.s390x",
"product_id": "ipmitool-1.8.18-7.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-1.8.18-7.3.1.x86_64",
"product": {
"name": "ipmitool-1.8.18-7.3.1.x86_64",
"product_id": "ipmitool-1.8.18-7.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-basesystem:15:sp1"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-7.3.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.aarch64"
},
"product_reference": "ipmitool-1.8.18-7.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-7.3.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.ppc64le"
},
"product_reference": "ipmitool-1.8.18-7.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-7.3.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.s390x"
},
"product_reference": "ipmitool-1.8.18-7.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-7.3.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.x86_64"
},
"product_reference": "ipmitool-1.8.18-7.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-bmc-snmp-proxy-1.8.18-7.3.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP1:ipmitool-bmc-snmp-proxy-1.8.18-7.3.1.noarch"
},
"product_reference": "ipmitool-bmc-snmp-proxy-1.8.18-7.3.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-5208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-5208"
}
],
"notes": [
{
"category": "general",
"text": "It\u0027s been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged user. This problem is fixed in version 1.8.19.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:ipmitool-bmc-snmp-proxy-1.8.18-7.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-5208",
"url": "https://www.suse.com/security/cve/CVE-2020-5208"
},
{
"category": "external",
"summary": "SUSE Bug 1163026 for CVE-2020-5208",
"url": "https://bugzilla.suse.com/1163026"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:ipmitool-bmc-snmp-proxy-1.8.18-7.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.aarch64",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.ppc64le",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.s390x",
"SUSE Linux Enterprise Module for Basesystem 15 SP1:ipmitool-1.8.18-7.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:ipmitool-bmc-snmp-proxy-1.8.18-7.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-02-19T08:30:33Z",
"details": "important"
}
],
"title": "CVE-2020-5208"
}
]
}
SUSE-SU-2020:0617-1
Vulnerability from csaf_suse - Published: 2020-03-09 12:00 - Updated: 2020-03-09 12:00Summary
Security update for ipmitool
Severity
Important
Notes
Title of the patch: Security update for ipmitool
Description of the patch: This update for ipmitool fixes the following issues:
- CVE-2020-5208: Fixed multiple remote code executtion vulnerabilities (bsc#1163026).
- picmg discover messages are now DEBUG and not INFO messages (bsc#1085469).
Patchnames: SUSE-2020-617,SUSE-SLE-Product-HPC-15-2020-617,SUSE-SLE-Product-SLES-15-2020-617,SUSE-SLE-Product-SLES_SAP-15-2020-617
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.1 (High)
Affected products
Recommended
10 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:ipmitool-1.8.18-4.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-ESPOS:ipmitool-1.8.18-4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:ipmitool-1.8.18-4.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 15-LTSS:ipmitool-1.8.18-4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:ipmitool-1.8.18-4.3.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15:ipmitool-1.8.18-4.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
9 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ipmitool",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for ipmitool fixes the following issues:\n\n- CVE-2020-5208: Fixed multiple remote code executtion vulnerabilities (bsc#1163026).\t \n- picmg discover messages are now DEBUG and not INFO messages (bsc#1085469).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2020-617,SUSE-SLE-Product-HPC-15-2020-617,SUSE-SLE-Product-SLES-15-2020-617,SUSE-SLE-Product-SLES_SAP-15-2020-617",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_0617-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:0617-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20200617-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:0617-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-March/006587.html"
},
{
"category": "self",
"summary": "SUSE Bug 1085469",
"url": "https://bugzilla.suse.com/1085469"
},
{
"category": "self",
"summary": "SUSE Bug 1163026",
"url": "https://bugzilla.suse.com/1163026"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-5208 page",
"url": "https://www.suse.com/security/cve/CVE-2020-5208/"
}
],
"title": "Security update for ipmitool",
"tracking": {
"current_release_date": "2020-03-09T12:00:33Z",
"generator": {
"date": "2020-03-09T12:00:33Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:0617-1",
"initial_release_date": "2020-03-09T12:00:33Z",
"revision_history": [
{
"date": "2020-03-09T12:00:33Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-1.8.18-4.3.1.aarch64",
"product": {
"name": "ipmitool-1.8.18-4.3.1.aarch64",
"product_id": "ipmitool-1.8.18-4.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-1.8.18-4.3.1.i586",
"product": {
"name": "ipmitool-1.8.18-4.3.1.i586",
"product_id": "ipmitool-1.8.18-4.3.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-1.8.18-4.3.1.ppc64le",
"product": {
"name": "ipmitool-1.8.18-4.3.1.ppc64le",
"product_id": "ipmitool-1.8.18-4.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-1.8.18-4.3.1.s390x",
"product": {
"name": "ipmitool-1.8.18-4.3.1.s390x",
"product_id": "ipmitool-1.8.18-4.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ipmitool-1.8.18-4.3.1.x86_64",
"product": {
"name": "ipmitool-1.8.18-4.3.1.x86_64",
"product_id": "ipmitool-1.8.18-4.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-espos:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:15"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:15"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-4.3.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:ipmitool-1.8.18-4.3.1.aarch64"
},
"product_reference": "ipmitool-1.8.18-4.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-4.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-ESPOS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-ESPOS:ipmitool-1.8.18-4.3.1.x86_64"
},
"product_reference": "ipmitool-1.8.18-4.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-ESPOS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-4.3.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:ipmitool-1.8.18-4.3.1.aarch64"
},
"product_reference": "ipmitool-1.8.18-4.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-4.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15-LTSS",
"product_id": "SUSE Linux Enterprise High Performance Computing 15-LTSS:ipmitool-1.8.18-4.3.1.x86_64"
},
"product_reference": "ipmitool-1.8.18-4.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-4.3.1.aarch64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.aarch64"
},
"product_reference": "ipmitool-1.8.18-4.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-4.3.1.ppc64le as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.ppc64le"
},
"product_reference": "ipmitool-1.8.18-4.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-4.3.1.s390x as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.s390x"
},
"product_reference": "ipmitool-1.8.18-4.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-4.3.1.x86_64 as component of SUSE Linux Enterprise Server 15-LTSS",
"product_id": "SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.x86_64"
},
"product_reference": "ipmitool-1.8.18-4.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 15-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-4.3.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:ipmitool-1.8.18-4.3.1.ppc64le"
},
"product_reference": "ipmitool-1.8.18-4.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipmitool-1.8.18-4.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 15:ipmitool-1.8.18-4.3.1.x86_64"
},
"product_reference": "ipmitool-1.8.18-4.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-5208",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-5208"
}
],
"notes": [
{
"category": "general",
"text": "It\u0027s been found that multiple functions in ipmitool before 1.8.19 neglect proper checking of the data received from a remote LAN party, which may lead to buffer overflows and potentially to remote code execution on the ipmitool side. This is especially dangerous if ipmitool is run as a privileged user. This problem is fixed in version 1.8.19.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:ipmitool-1.8.18-4.3.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:ipmitool-1.8.18-4.3.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:ipmitool-1.8.18-4.3.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:ipmitool-1.8.18-4.3.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:ipmitool-1.8.18-4.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:ipmitool-1.8.18-4.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-5208",
"url": "https://www.suse.com/security/cve/CVE-2020-5208"
},
{
"category": "external",
"summary": "SUSE Bug 1163026 for CVE-2020-5208",
"url": "https://bugzilla.suse.com/1163026"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:ipmitool-1.8.18-4.3.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:ipmitool-1.8.18-4.3.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:ipmitool-1.8.18-4.3.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:ipmitool-1.8.18-4.3.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:ipmitool-1.8.18-4.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:ipmitool-1.8.18-4.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:ipmitool-1.8.18-4.3.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-ESPOS:ipmitool-1.8.18-4.3.1.x86_64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:ipmitool-1.8.18-4.3.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 15-LTSS:ipmitool-1.8.18-4.3.1.x86_64",
"SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.aarch64",
"SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.ppc64le",
"SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.s390x",
"SUSE Linux Enterprise Server 15-LTSS:ipmitool-1.8.18-4.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 15:ipmitool-1.8.18-4.3.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 15:ipmitool-1.8.18-4.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-03-09T12:00:33Z",
"details": "important"
}
],
"title": "CVE-2020-5208"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…