2017-08-18 18:00:00
redhat
PUBLISHED
Pulp does not remove permissions for named objects upon deletion, which allows authenticated users to gain the privileges of a deleted object via creating an object with the same name.