Redhat Ansible Tower vulnerabilities

CVE-2018-10733 [MEDIUM] CWE-125 CVE-2018-10733: There is a heap-based buffer over-read in the function ft_font_face_hash of gxps-fonts.c in libgxps There is a heap-based buffer over-read in the function ft_font_face_hash of gxps-fonts.c in libgxps through 0.3.0. A crafted input will lead to a remote denial of service attack.

CVE-2018-1104 [HIGH] CWE-20 CVE-2018-1104: Ansible Tower through version 3.2.3 has a vulnerability that allows users only with access to define Ansible Tower through version 3.2.3 has a vulnerability that allows users only with access to define variables for a job template to execute arbitrary code on the Tower server.

CVE-2018-1101 [HIGH] CWE-266 CVE-2018-1101: Ansible Tower before version 3.2.4 has a flaw in the management of system and organization administr Ansible Tower before version 3.2.4 has a flaw in the management of system and organization administrators that allows for privilege escalation. System administrators that are members of organizations can have their passwords reset by organization administrators, allowing organization administrators access to the entire system.