CVE-2014-0199 Information

Description

The setup script in ovirt-engine-reports as used in the Red Hat Enterprise Virtualization reports (rhevm-reports) package before 3.3.3 stores the reports database password in cleartext which allows local users to obtain sensitive information by reading an unspecified file.

Reference

http://rhn.redhat.com/errata/RHSA-2014-0558.html http://www.securityfocus.com/bid/67682