CVE-2016-3108

Name of the Vulnerable Software and Affected Versions Pulp versions prior to 2.8.3

Description The issue allows local users to leak keys or write to arbitrary files via a symlink attack, specifically targeting the pulp-gen-nodes-certificate script in Pulp.

Recommendations For versions prior to 2.8.3, update to version 2.8.3 or later to resolve the issue.