Name of the Vulnerable Software and Affected Versions:

OpenStack Heat Templates (heat-templates) as used in Red Hat Enterprise Linux OpenStack Platform version 4.0

Description:

The issue allows man-in-the-middle attackers to prevent updates via unspecified vectors by disabling SSL protection for certain Yum repositories.

Recommendations:

For Red Hat Enterprise Linux OpenStack Platform version 4.0, consider enabling SSL verification for Yum repositories to prevent man-in-the-middle attacks.