Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-15043 (GCVE-0-2019-15043)
Vulnerability from cvelistv5 – Published: 2019-09-03 11:47 – Updated: 2024-08-05 00:34
VLAI?
EPSS
Summary
In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
10 references
| URL | Tags |
|---|---|
| https://community.grafana.com/t/release-notes-v6-… | x_refsource_MISC |
| https://github.com/grafana/grafana/releases | x_refsource_MISC |
| https://community.grafana.com/t/grafana-5-4-5-and… | x_refsource_CONFIRM |
| https://grafana.com/blog/2019/08/29/grafana-5.4.5… | x_refsource_CONFIRM |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| https://lists.fedoraproject.org/archives/list/pac… | vendor-advisoryx_refsource_FEDORA |
| https://security.netapp.com/advisory/ntap-2019100… | x_refsource_CONFIRM |
| http://lists.opensuse.org/opensuse-security-annou… | vendor-advisoryx_refsource_SUSE |
| http://lists.opensuse.org/opensuse-security-annou… | vendor-advisoryx_refsource_SUSE |
| http://lists.opensuse.org/opensuse-security-annou… | vendor-advisoryx_refsource_SUSE |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T00:34:53.156Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://community.grafana.com/t/release-notes-v6-3-x/19202"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/grafana/grafana/releases"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/"
},
{
"name": "FEDORA-2019-0bb6b876da",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RF5ARGYX3WYB7H2FDR7VAWTEQ27UX3FU/"
},
{
"name": "FEDORA-2019-77d612eab4",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO4NBL7PKW4OSFRVZENGC42EWEJV2YAH/"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20191004-0004/"
},
{
"name": "openSUSE-SU-2020:0892",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00060.html"
},
{
"name": "openSUSE-SU-2020:1105",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html"
},
{
"name": "openSUSE-SU-2020:1611",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00009.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-10-04T17:06:10.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://community.grafana.com/t/release-notes-v6-3-x/19202"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/grafana/grafana/releases"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/"
},
{
"name": "FEDORA-2019-0bb6b876da",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RF5ARGYX3WYB7H2FDR7VAWTEQ27UX3FU/"
},
{
"name": "FEDORA-2019-77d612eab4",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO4NBL7PKW4OSFRVZENGC42EWEJV2YAH/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20191004-0004/"
},
{
"name": "openSUSE-SU-2020:0892",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00060.html"
},
{
"name": "openSUSE-SU-2020:1105",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html"
},
{
"name": "openSUSE-SU-2020:1611",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00009.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-15043",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://community.grafana.com/t/release-notes-v6-3-x/19202",
"refsource": "MISC",
"url": "https://community.grafana.com/t/release-notes-v6-3-x/19202"
},
{
"name": "https://github.com/grafana/grafana/releases",
"refsource": "MISC",
"url": "https://github.com/grafana/grafana/releases"
},
{
"name": "https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569",
"refsource": "CONFIRM",
"url": "https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569"
},
{
"name": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/",
"refsource": "CONFIRM",
"url": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/"
},
{
"name": "FEDORA-2019-0bb6b876da",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RF5ARGYX3WYB7H2FDR7VAWTEQ27UX3FU/"
},
{
"name": "FEDORA-2019-77d612eab4",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UO4NBL7PKW4OSFRVZENGC42EWEJV2YAH/"
},
{
"name": "https://security.netapp.com/advisory/ntap-20191004-0004/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20191004-0004/"
},
{
"name": "openSUSE-SU-2020:0892",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00060.html"
},
{
"name": "openSUSE-SU-2020:1105",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html"
},
{
"name": "openSUSE-SU-2020:1611",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00009.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-15043",
"datePublished": "2019-09-03T11:47:35.000Z",
"dateReserved": "2019-08-14T00:00:00.000Z",
"dateUpdated": "2024-08-05T00:34:53.156Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2019-15043",
"date": "2026-05-19",
"epss": "0.90928",
"percentile": "0.99642"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:grafana:grafana:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.0.0\", \"versionEndExcluding\": \"5.4.5\", \"matchCriteriaId\": \"35B2F43D-9037-4FA6-853E-1B00E1E96457\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:grafana:grafana:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.0.0\", \"versionEndExcluding\": \"6.3.4\", \"matchCriteriaId\": \"52DED895-3E2B-4109-96D4-59EBA368A9BA\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.\"}, {\"lang\": \"es\", \"value\": \"En Grafana versi\\u00f3n 2.x hasta la versi\\u00f3n 6.x en versiones anteriores a la 6.3.4, partes de la API HTTP permiten el uso no autenticado. Esto hace posible ejecutar un ataque de denegaci\\u00f3n de servicio contra el servidor que ejecuta Grafana.\"}]",
"id": "CVE-2019-15043",
"lastModified": "2024-11-21T04:27:56.410",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2019-09-03T12:15:10.933",
"references": "[{\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00060.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00009.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://community.grafana.com/t/release-notes-v6-3-x/19202\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/grafana/grafana/releases\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\", \"Vendor Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RF5ARGYX3WYB7H2FDR7VAWTEQ27UX3FU/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO4NBL7PKW4OSFRVZENGC42EWEJV2YAH/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20191004-0004/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00060.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00009.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://community.grafana.com/t/release-notes-v6-3-x/19202\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://github.com/grafana/grafana/releases\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\"]}, {\"url\": \"https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\", \"Vendor Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RF5ARGYX3WYB7H2FDR7VAWTEQ27UX3FU/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO4NBL7PKW4OSFRVZENGC42EWEJV2YAH/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20191004-0004/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-306\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2019-15043\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2019-09-03T12:15:10.933\",\"lastModified\":\"2024-11-21T04:27:56.410\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.\"},{\"lang\":\"es\",\"value\":\"En Grafana versi\u00f3n 2.x hasta la versi\u00f3n 6.x en versiones anteriores a la 6.3.4, partes de la API HTTP permiten el uso no autenticado. Esto hace posible ejecutar un ataque de denegaci\u00f3n de servicio contra el servidor que ejecuta Grafana.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-306\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:grafana:grafana:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.0.0\",\"versionEndExcluding\":\"5.4.5\",\"matchCriteriaId\":\"35B2F43D-9037-4FA6-853E-1B00E1E96457\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:grafana:grafana:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndExcluding\":\"6.3.4\",\"matchCriteriaId\":\"52DED895-3E2B-4109-96D4-59EBA368A9BA\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00060.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00009.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://community.grafana.com/t/release-notes-v6-3-x/19202\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/grafana/grafana/releases\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RF5ARGYX3WYB7H2FDR7VAWTEQ27UX3FU/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO4NBL7PKW4OSFRVZENGC42EWEJV2YAH/\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20191004-0004/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00060.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00009.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://community.grafana.com/t/release-notes-v6-3-x/19202\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/grafana/grafana/releases\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RF5ARGYX3WYB7H2FDR7VAWTEQ27UX3FU/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UO4NBL7PKW4OSFRVZENGC42EWEJV2YAH/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20191004-0004/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
RHSA-2020_1659
Vulnerability from csaf_redhat - Published: 2020-04-28 16:11 - Updated: 2024-11-22 14:12Summary
Red Hat Security Advisory: grafana security, bug fix, and enhancement update
Severity
Moderate
Notes
Topic: An update for grafana is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB.
The following packages have been upgraded to a later upstream version: grafana (6.3.6). (BZ#1725278)
Security Fix(es):
* grafana: incorrect access control in snapshot HTTP API leads to denial of service (CVE-2019-15043)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.2 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.
4.3 (Medium)
Affected products
Fixed
57 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
11 references
Acknowledgments
the Grafana team
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grafana is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB \u0026 OpenTSDB. \n\nThe following packages have been upgraded to a later upstream version: grafana (6.3.6). (BZ#1725278)\n\nSecurity Fix(es):\n\n* grafana: incorrect access control in snapshot HTTP API leads to denial of service (CVE-2019-15043)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.2 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:1659",
"url": "https://access.redhat.com/errata/RHSA-2020:1659"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.2_release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.2_release_notes/index"
},
{
"category": "external",
"summary": "1725278",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1725278"
},
{
"category": "external",
"summary": "1746945",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1746945"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_1659.json"
}
],
"title": "Red Hat Security Advisory: grafana security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2024-11-22T14:12:25+00:00",
"generator": {
"date": "2024-11-22T14:12:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2020:1659",
"initial_release_date": "2020-04-28T16:11:10+00:00",
"revision_history": [
{
"date": "2020-04-28T16:11:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-04-28T16:11:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T14:12:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-azure-monitor@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-cloudwatch@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-elasticsearch@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-graphite-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-graphite-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-graphite-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-graphite@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-influxdb@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-loki-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-loki-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-loki-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-loki@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-mssql-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-mssql-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-mssql-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mssql@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-mysql-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-mysql-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-mysql-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mysql@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-opentsdb@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-postgres-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-postgres-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-postgres-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-postgres@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-prometheus@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-stackdriver@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-debuginfo@6.3.6-1.el8?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-0:6.3.6-1.el8.s390x",
"product_id": "grafana-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"product_id": "grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-azure-monitor@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"product_id": "grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-cloudwatch@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"product_id": "grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-elasticsearch@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-graphite-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-graphite-0:6.3.6-1.el8.s390x",
"product_id": "grafana-graphite-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-graphite@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-influxdb-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-influxdb-0:6.3.6-1.el8.s390x",
"product_id": "grafana-influxdb-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-influxdb@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-loki-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-loki-0:6.3.6-1.el8.s390x",
"product_id": "grafana-loki-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-loki@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-mssql-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-mssql-0:6.3.6-1.el8.s390x",
"product_id": "grafana-mssql-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mssql@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-mysql-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-mysql-0:6.3.6-1.el8.s390x",
"product_id": "grafana-mysql-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mysql@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-opentsdb-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.s390x",
"product_id": "grafana-opentsdb-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-opentsdb@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-postgres-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-postgres-0:6.3.6-1.el8.s390x",
"product_id": "grafana-postgres-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-postgres@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-prometheus-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-prometheus-0:6.3.6-1.el8.s390x",
"product_id": "grafana-prometheus-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-prometheus@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-stackdriver-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.s390x",
"product_id": "grafana-stackdriver-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-stackdriver@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-debuginfo-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.s390x",
"product_id": "grafana-debuginfo-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-debuginfo@6.3.6-1.el8?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-azure-monitor@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-cloudwatch@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-elasticsearch@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-graphite-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-graphite-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-graphite-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-graphite@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-influxdb-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-influxdb-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-influxdb-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-influxdb@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-loki-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-loki-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-loki-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-loki@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-mssql-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-mssql-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-mssql-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mssql@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-mysql-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-mysql-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-mysql-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mysql@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-opentsdb@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-postgres-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-postgres-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-postgres-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-postgres@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-prometheus-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-prometheus-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-prometheus-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-prometheus@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-stackdriver-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-stackdriver-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-stackdriver@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-debuginfo@6.3.6-1.el8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-azure-monitor@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-cloudwatch@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-elasticsearch@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-graphite-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-graphite-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-graphite-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-graphite@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-influxdb-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-influxdb-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-influxdb-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-influxdb@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-loki-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-loki-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-loki-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-loki@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-mssql-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-mssql-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-mssql-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mssql@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-mysql-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-mysql-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-mysql-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mysql@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-opentsdb@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-postgres-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-postgres-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-postgres-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-postgres@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-prometheus-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-prometheus-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-prometheus-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-prometheus@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-stackdriver@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-debuginfo@6.3.6-1.el8?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-0:6.3.6-1.el8.src",
"product": {
"name": "grafana-0:6.3.6-1.el8.src",
"product_id": "grafana-0:6.3.6-1.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana@6.3.6-1.el8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-0:6.3.6-1.el8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.src"
},
"product_reference": "grafana-0:6.3.6-1.el8.src",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-debuginfo-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-graphite-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-graphite-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-graphite-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-graphite-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-graphite-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-graphite-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-graphite-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-graphite-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-influxdb-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-influxdb-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-influxdb-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-influxdb-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-influxdb-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-influxdb-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-influxdb-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-loki-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-loki-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-loki-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-loki-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-loki-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-loki-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-loki-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-loki-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mssql-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-mssql-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mssql-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-mssql-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mssql-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-mssql-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mssql-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-mssql-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mysql-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-mysql-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mysql-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-mysql-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mysql-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-mysql-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mysql-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-mysql-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-opentsdb-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-postgres-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-postgres-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-postgres-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-postgres-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-postgres-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-postgres-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-postgres-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-postgres-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-prometheus-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-prometheus-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-prometheus-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-prometheus-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-prometheus-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-prometheus-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-prometheus-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-stackdriver-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-stackdriver-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Grafana team"
]
}
],
"cve": "CVE-2019-15043",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2019-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1746945"
}
],
"notes": [
{
"category": "description",
"text": "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grafana: incorrect access control in snapshot HTTP API leads to denial of service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "OpenShift Container Platform secures all usages of Grafana behind the oauth-proxy, preventing access to Grafana without authentication. Red Hat Product Security have rated this vulnerability as Low for OpenShift Container Platform.\nThis issue affects the version of Grafana as shipped with Red Hat Gluster Storage 3 and Red Hat Ceph Storage 3, as it contains the vulnerable snapshot functionality.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.src",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-15043"
},
{
"category": "external",
"summary": "RHBZ#1746945",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1746945"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-15043",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15043"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-15043",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15043"
},
{
"category": "external",
"summary": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/",
"url": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/"
}
],
"release_date": "2019-08-29T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T16:11:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.src",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1659"
},
{
"category": "workaround",
"details": "Block access to the snapshot feature by blocking the /api/snapshots \nURL via a web application firewall, load balancer, reverse proxy etc.\n\nYou can also set \u0027external_enabled\u0027 to false to disable external \nsnapshot publish endpoint (default true). Note, it will completely\ndisable this feature.\n\n# cat /etc/grafana/grafana.ini\n[...]\n[snapshots]\n# snapshot sharing options\nexternal_enabled = false\nexternal_snapshot_url = https://snapshots-origin.raintank.io\nexternal_snapshot_name = Publish to snapshot.raintank.io\n[...]",
"product_ids": [
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.src",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.src",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grafana: incorrect access control in snapshot HTTP API leads to denial of service"
}
]
}
RHSA-2020:1659
Vulnerability from csaf_redhat - Published: 2020-04-28 16:11 - Updated: 2025-11-21 18:13Summary
Red Hat Security Advisory: grafana security, bug fix, and enhancement update
Severity
Moderate
Notes
Topic: An update for grafana is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB.
The following packages have been upgraded to a later upstream version: grafana (6.3.6). (BZ#1725278)
Security Fix(es):
* grafana: incorrect access control in snapshot HTTP API leads to denial of service (CVE-2019-15043)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.2 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.
4.3 (Medium)
Affected products
Fixed
57 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
11 references
Acknowledgments
the Grafana team
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for grafana is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB \u0026 OpenTSDB. \n\nThe following packages have been upgraded to a later upstream version: grafana (6.3.6). (BZ#1725278)\n\nSecurity Fix(es):\n\n* grafana: incorrect access control in snapshot HTTP API leads to denial of service (CVE-2019-15043)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 8.2 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2020:1659",
"url": "https://access.redhat.com/errata/RHSA-2020:1659"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.2_release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.2_release_notes/index"
},
{
"category": "external",
"summary": "1725278",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1725278"
},
{
"category": "external",
"summary": "1746945",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1746945"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_1659.json"
}
],
"title": "Red Hat Security Advisory: grafana security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2025-11-21T18:13:52+00:00",
"generator": {
"date": "2025-11-21T18:13:52+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2020:1659",
"initial_release_date": "2020-04-28T16:11:10+00:00",
"revision_history": [
{
"date": "2020-04-28T16:11:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2020-04-28T16:11:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:13:52+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-azure-monitor@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-cloudwatch@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-elasticsearch@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-graphite-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-graphite-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-graphite-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-graphite@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-influxdb@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-loki-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-loki-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-loki-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-loki@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-mssql-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-mssql-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-mssql-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mssql@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-mysql-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-mysql-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-mysql-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mysql@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-opentsdb@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-postgres-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-postgres-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-postgres-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-postgres@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-prometheus@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-stackdriver@6.3.6-1.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"product": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"product_id": "grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-debuginfo@6.3.6-1.el8?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-0:6.3.6-1.el8.s390x",
"product_id": "grafana-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"product_id": "grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-azure-monitor@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"product_id": "grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-cloudwatch@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"product_id": "grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-elasticsearch@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-graphite-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-graphite-0:6.3.6-1.el8.s390x",
"product_id": "grafana-graphite-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-graphite@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-influxdb-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-influxdb-0:6.3.6-1.el8.s390x",
"product_id": "grafana-influxdb-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-influxdb@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-loki-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-loki-0:6.3.6-1.el8.s390x",
"product_id": "grafana-loki-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-loki@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-mssql-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-mssql-0:6.3.6-1.el8.s390x",
"product_id": "grafana-mssql-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mssql@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-mysql-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-mysql-0:6.3.6-1.el8.s390x",
"product_id": "grafana-mysql-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mysql@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-opentsdb-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.s390x",
"product_id": "grafana-opentsdb-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-opentsdb@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-postgres-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-postgres-0:6.3.6-1.el8.s390x",
"product_id": "grafana-postgres-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-postgres@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-prometheus-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-prometheus-0:6.3.6-1.el8.s390x",
"product_id": "grafana-prometheus-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-prometheus@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-stackdriver-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.s390x",
"product_id": "grafana-stackdriver-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-stackdriver@6.3.6-1.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "grafana-debuginfo-0:6.3.6-1.el8.s390x",
"product": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.s390x",
"product_id": "grafana-debuginfo-0:6.3.6-1.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-debuginfo@6.3.6-1.el8?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-azure-monitor@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-cloudwatch@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-elasticsearch@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-graphite-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-graphite-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-graphite-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-graphite@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-influxdb-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-influxdb-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-influxdb-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-influxdb@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-loki-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-loki-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-loki-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-loki@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-mssql-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-mssql-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-mssql-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mssql@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-mysql-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-mysql-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-mysql-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mysql@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-opentsdb@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-postgres-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-postgres-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-postgres-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-postgres@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-prometheus-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-prometheus-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-prometheus-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-prometheus@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-stackdriver-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-stackdriver-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-stackdriver@6.3.6-1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"product": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"product_id": "grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-debuginfo@6.3.6-1.el8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-azure-monitor@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-cloudwatch@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-elasticsearch@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-graphite-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-graphite-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-graphite-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-graphite@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-influxdb-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-influxdb-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-influxdb-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-influxdb@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-loki-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-loki-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-loki-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-loki@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-mssql-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-mssql-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-mssql-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mssql@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-mysql-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-mysql-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-mysql-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-mysql@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-opentsdb@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-postgres-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-postgres-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-postgres-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-postgres@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-prometheus-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-prometheus-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-prometheus-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-prometheus@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-stackdriver@6.3.6-1.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"product": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"product_id": "grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana-debuginfo@6.3.6-1.el8?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-0:6.3.6-1.el8.src",
"product": {
"name": "grafana-0:6.3.6-1.el8.src",
"product_id": "grafana-0:6.3.6-1.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/grafana@6.3.6-1.el8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-0:6.3.6-1.el8.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.src"
},
"product_reference": "grafana-0:6.3.6-1.el8.src",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-azure-monitor-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-cloudwatch-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-debuginfo-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-debuginfo-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-elasticsearch-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-graphite-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-graphite-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-graphite-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-graphite-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-graphite-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-graphite-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-graphite-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-graphite-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-influxdb-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-influxdb-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-influxdb-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-influxdb-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-influxdb-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-influxdb-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-influxdb-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-loki-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-loki-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-loki-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-loki-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-loki-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-loki-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-loki-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-loki-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mssql-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-mssql-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mssql-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-mssql-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mssql-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-mssql-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mssql-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-mssql-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mysql-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-mysql-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mysql-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-mysql-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mysql-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-mysql-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-mysql-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-mysql-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-opentsdb-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-opentsdb-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-postgres-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-postgres-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-postgres-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-postgres-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-postgres-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-postgres-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-postgres-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-postgres-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-prometheus-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-prometheus-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-prometheus-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-prometheus-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-prometheus-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-prometheus-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-prometheus-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.aarch64"
},
"product_reference": "grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.ppc64le"
},
"product_reference": "grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.s390x"
},
"product_reference": "grafana-stackdriver-0:6.3.6-1.el8.s390x",
"relates_to_product_reference": "AppStream-8.2.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-stackdriver-0:6.3.6-1.el8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.x86_64"
},
"product_reference": "grafana-stackdriver-0:6.3.6-1.el8.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.GA"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Grafana team"
]
}
],
"cve": "CVE-2019-15043",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2019-08-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1746945"
}
],
"notes": [
{
"category": "description",
"text": "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "grafana: incorrect access control in snapshot HTTP API leads to denial of service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "OpenShift Container Platform secures all usages of Grafana behind the oauth-proxy, preventing access to Grafana without authentication. Red Hat Product Security have rated this vulnerability as Low for OpenShift Container Platform.\nThis issue affects the version of Grafana as shipped with Red Hat Gluster Storage 3 and Red Hat Ceph Storage 3, as it contains the vulnerable snapshot functionality.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.src",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-15043"
},
{
"category": "external",
"summary": "RHBZ#1746945",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1746945"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-15043",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-15043"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-15043",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15043"
},
{
"category": "external",
"summary": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/",
"url": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/"
}
],
"release_date": "2019-08-29T18:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2020-04-28T16:11:10+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.src",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2020:1659"
},
{
"category": "workaround",
"details": "Block access to the snapshot feature by blocking the /api/snapshots \nURL via a web application firewall, load balancer, reverse proxy etc.\n\nYou can also set \u0027external_enabled\u0027 to false to disable external \nsnapshot publish endpoint (default true). Note, it will completely\ndisable this feature.\n\n# cat /etc/grafana/grafana.ini\n[...]\n[snapshots]\n# snapshot sharing options\nexternal_enabled = false\nexternal_snapshot_url = https://snapshots-origin.raintank.io\nexternal_snapshot_name = Publish to snapshot.raintank.io\n[...]",
"product_ids": [
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.src",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.src",
"AppStream-8.2.0.GA:grafana-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-azure-monitor-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-cloudwatch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-debuginfo-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-elasticsearch-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-graphite-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-influxdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-loki-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mssql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-mysql-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-opentsdb-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-postgres-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-prometheus-0:6.3.6-1.el8.x86_64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.aarch64",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.ppc64le",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.s390x",
"AppStream-8.2.0.GA:grafana-stackdriver-0:6.3.6-1.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "grafana: incorrect access control in snapshot HTTP API leads to denial of service"
}
]
}
GSD-2019-15043
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2019-15043",
"description": "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.",
"id": "GSD-2019-15043",
"references": [
"https://www.suse.com/security/cve/CVE-2019-15043.html",
"https://access.redhat.com/errata/RHSA-2020:1659",
"https://security.archlinux.org/CVE-2019-15043",
"https://linux.oracle.com/cve/CVE-2019-15043.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2019-15043"
],
"details": "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.",
"id": "GSD-2019-15043",
"modified": "2023-12-13T01:23:38.574639Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-15043",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://community.grafana.com/t/release-notes-v6-3-x/19202",
"refsource": "MISC",
"url": "https://community.grafana.com/t/release-notes-v6-3-x/19202"
},
{
"name": "https://github.com/grafana/grafana/releases",
"refsource": "MISC",
"url": "https://github.com/grafana/grafana/releases"
},
{
"name": "https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569",
"refsource": "CONFIRM",
"url": "https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569"
},
{
"name": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/",
"refsource": "CONFIRM",
"url": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/"
},
{
"name": "FEDORA-2019-0bb6b876da",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RF5ARGYX3WYB7H2FDR7VAWTEQ27UX3FU/"
},
{
"name": "FEDORA-2019-77d612eab4",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UO4NBL7PKW4OSFRVZENGC42EWEJV2YAH/"
},
{
"name": "https://security.netapp.com/advisory/ntap-20191004-0004/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20191004-0004/"
},
{
"name": "openSUSE-SU-2020:0892",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00060.html"
},
{
"name": "openSUSE-SU-2020:1105",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html"
},
{
"name": "openSUSE-SU-2020:1611",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00009.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:grafana:grafana:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.3.4",
"versionStartIncluding": "6.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:grafana:grafana:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "5.4.5",
"versionStartIncluding": "2.0.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-15043"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-306"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569"
},
{
"name": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/",
"refsource": "CONFIRM",
"tags": [
"Release Notes",
"Vendor Advisory"
],
"url": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/"
},
{
"name": "https://community.grafana.com/t/release-notes-v6-3-x/19202",
"refsource": "MISC",
"tags": [
"Release Notes"
],
"url": "https://community.grafana.com/t/release-notes-v6-3-x/19202"
},
{
"name": "https://github.com/grafana/grafana/releases",
"refsource": "MISC",
"tags": [
"Release Notes"
],
"url": "https://github.com/grafana/grafana/releases"
},
{
"name": "FEDORA-2019-77d612eab4",
"refsource": "FEDORA",
"tags": [],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UO4NBL7PKW4OSFRVZENGC42EWEJV2YAH/"
},
{
"name": "FEDORA-2019-0bb6b876da",
"refsource": "FEDORA",
"tags": [],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RF5ARGYX3WYB7H2FDR7VAWTEQ27UX3FU/"
},
{
"name": "https://security.netapp.com/advisory/ntap-20191004-0004/",
"refsource": "CONFIRM",
"tags": [],
"url": "https://security.netapp.com/advisory/ntap-20191004-0004/"
},
{
"name": "openSUSE-SU-2020:0892",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00060.html"
},
{
"name": "openSUSE-SU-2020:1105",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html"
},
{
"name": "openSUSE-SU-2020:1611",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00009.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
},
"lastModifiedDate": "2020-10-04T18:15Z",
"publishedDate": "2019-09-03T12:15Z"
}
}
}
VAR-201909-0885
Vulnerability from variot - Updated: 2024-02-13 00:34In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana. Grafana Contains an access control vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Grafana is a set of open source monitoring tools that provide a visual monitoring interface at Grafana Labs. This tool is mainly used to monitor and analyze Graphite, InfluxDB and Prometheus.
An access control error vulnerability exists in Grafana that could be exploited by an attacker to cause a denial of service. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
====================================================================
Red Hat Security Advisory
Synopsis: Moderate: grafana security, bug fix, and enhancement update Advisory ID: RHSA-2020:1659-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:1659 Issue date: 2020-04-28 CVE Names: CVE-2019-15043 ==================================================================== 1. Summary:
An update for grafana is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
- Relevant releases/architectures:
Red Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64
- Description:
Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB.
The following packages have been upgraded to a later upstream version: grafana (6.3.6). (BZ#1725278)
Security Fix(es):
- grafana: incorrect access control in snapshot HTTP API leads to denial of service (CVE-2019-15043)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.2 Release Notes linked from the References section.
- Solution:
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
- Package List:
Red Hat Enterprise Linux AppStream (v. 8):
Source: grafana-6.3.6-1.el8.src.rpm
aarch64: grafana-6.3.6-1.el8.aarch64.rpm grafana-azure-monitor-6.3.6-1.el8.aarch64.rpm grafana-cloudwatch-6.3.6-1.el8.aarch64.rpm grafana-debuginfo-6.3.6-1.el8.aarch64.rpm grafana-elasticsearch-6.3.6-1.el8.aarch64.rpm grafana-graphite-6.3.6-1.el8.aarch64.rpm grafana-influxdb-6.3.6-1.el8.aarch64.rpm grafana-loki-6.3.6-1.el8.aarch64.rpm grafana-mssql-6.3.6-1.el8.aarch64.rpm grafana-mysql-6.3.6-1.el8.aarch64.rpm grafana-opentsdb-6.3.6-1.el8.aarch64.rpm grafana-postgres-6.3.6-1.el8.aarch64.rpm grafana-prometheus-6.3.6-1.el8.aarch64.rpm grafana-stackdriver-6.3.6-1.el8.aarch64.rpm
ppc64le: grafana-6.3.6-1.el8.ppc64le.rpm grafana-azure-monitor-6.3.6-1.el8.ppc64le.rpm grafana-cloudwatch-6.3.6-1.el8.ppc64le.rpm grafana-debuginfo-6.3.6-1.el8.ppc64le.rpm grafana-elasticsearch-6.3.6-1.el8.ppc64le.rpm grafana-graphite-6.3.6-1.el8.ppc64le.rpm grafana-influxdb-6.3.6-1.el8.ppc64le.rpm grafana-loki-6.3.6-1.el8.ppc64le.rpm grafana-mssql-6.3.6-1.el8.ppc64le.rpm grafana-mysql-6.3.6-1.el8.ppc64le.rpm grafana-opentsdb-6.3.6-1.el8.ppc64le.rpm grafana-postgres-6.3.6-1.el8.ppc64le.rpm grafana-prometheus-6.3.6-1.el8.ppc64le.rpm grafana-stackdriver-6.3.6-1.el8.ppc64le.rpm
s390x: grafana-6.3.6-1.el8.s390x.rpm grafana-azure-monitor-6.3.6-1.el8.s390x.rpm grafana-cloudwatch-6.3.6-1.el8.s390x.rpm grafana-debuginfo-6.3.6-1.el8.s390x.rpm grafana-elasticsearch-6.3.6-1.el8.s390x.rpm grafana-graphite-6.3.6-1.el8.s390x.rpm grafana-influxdb-6.3.6-1.el8.s390x.rpm grafana-loki-6.3.6-1.el8.s390x.rpm grafana-mssql-6.3.6-1.el8.s390x.rpm grafana-mysql-6.3.6-1.el8.s390x.rpm grafana-opentsdb-6.3.6-1.el8.s390x.rpm grafana-postgres-6.3.6-1.el8.s390x.rpm grafana-prometheus-6.3.6-1.el8.s390x.rpm grafana-stackdriver-6.3.6-1.el8.s390x.rpm
x86_64: grafana-6.3.6-1.el8.x86_64.rpm grafana-azure-monitor-6.3.6-1.el8.x86_64.rpm grafana-cloudwatch-6.3.6-1.el8.x86_64.rpm grafana-debuginfo-6.3.6-1.el8.x86_64.rpm grafana-elasticsearch-6.3.6-1.el8.x86_64.rpm grafana-graphite-6.3.6-1.el8.x86_64.rpm grafana-influxdb-6.3.6-1.el8.x86_64.rpm grafana-loki-6.3.6-1.el8.x86_64.rpm grafana-mssql-6.3.6-1.el8.x86_64.rpm grafana-mysql-6.3.6-1.el8.x86_64.rpm grafana-opentsdb-6.3.6-1.el8.x86_64.rpm grafana-postgres-6.3.6-1.el8.x86_64.rpm grafana-prometheus-6.3.6-1.el8.x86_64.rpm grafana-stackdriver-6.3.6-1.el8.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/
- References:
https://access.redhat.com/security/cve/CVE-2019-15043 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.2_release_notes/index
- Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/
Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1
iQIVAwUBXqhVtdzjgjWX9erEAQjjzQ//UMQ+3TmzrSdgb9VpHE0EhP2PMJi7A9oo aieBhGN/4wPHmCoH2XHNSQPLkrmJf49ZkIPYzPcoZjs/DQ/oy7J/dT/nVNsW9Aul /JSVeWjlgNqFn4gZFe5LCtgqzt48FL/hSt1NgPqmpZWmyx1JXThTOed3PcbptmLO FgIj3Lhs7kcZk/LTvXNC4L3UyhUn5PJK+mXzAtNWTvW0Ca2cWGRVCtbssI/m87IL AR84wXaVj8xW054DLlojDfigUFXTlJr4PFM6tfFJwxUzgev8Xb6Sg09PM48FEd2L B7f1W9xb/27cqj0BDapp3vj8+ViKDOIDGeDZxlxdFMkQaK1mHNWOuNiIZCiGBDVd ++OX/wjjxbnfUiRd/ounQLZadta4D9c6qs+xORwHaPVy6hAOeV9UELDY+nmXo3tO GDGPAmLyJqdYZR/4PO1O0Gp7/dOyL+51J57QpD/7coGrwAikkm9hF2bI1WabRe01 nx/DEFdjOtmHXPR7g41BroCr81bom+J7SCru9MotBCVUm5HbW42mhPxixkb70Tlu +yUfSLZFO5Ve8VTF+/eMx817pwLQP/a6lkbJzVwwCYMIsgaaEgKXPj5BLM5P7hKk HyvYc7bWku+csEfM2Cf0qHFIYYxgBqZIp14UU70MZ0J6HQIMWCHXJqngUAzkvqR4 k/AjDHhUTII=yev2 -----END PGP SIGNATURE-----
-- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201909-0885",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "grafana",
"scope": "gte",
"trust": 1.0,
"vendor": "grafana",
"version": "6.0.0"
},
{
"model": "grafana",
"scope": "gte",
"trust": 1.0,
"vendor": "grafana",
"version": "2.0.0"
},
{
"model": "grafana",
"scope": "lt",
"trust": 1.0,
"vendor": "grafana",
"version": "5.4.5"
},
{
"model": "grafana",
"scope": "lt",
"trust": 1.0,
"vendor": "grafana",
"version": "6.3.4"
},
{
"model": "grafana",
"scope": "eq",
"trust": 0.8,
"vendor": "grafana",
"version": "6.3.4"
},
{
"model": "grafana",
"scope": "lt",
"trust": 0.8,
"vendor": "grafana",
"version": "6.x for up to 2.x"
},
{
"model": "grafana",
"scope": "gte",
"trust": 0.6,
"vendor": "grafana",
"version": "2.*,\u003c=6.*"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2019-30484"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-008892"
},
{
"db": "NVD",
"id": "CVE-2019-15043"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:grafana:grafana:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "5.4.5",
"versionStartIncluding": "2.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:grafana:grafana:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.3.4",
"versionStartIncluding": "6.0.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2019-15043"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Red Hat",
"sources": [
{
"db": "PACKETSTORM",
"id": "157468"
},
{
"db": "CNNVD",
"id": "CNNVD-201908-2274"
}
],
"trust": 0.7
},
"cve": "CVE-2019-15043",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Partial",
"baseScore": 5.0,
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "CVE-2019-15043",
"impactScore": null,
"integrityImpact": "None",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Medium",
"trust": 0.9,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "CNVD-2019-30484",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "NVD",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.9,
"impactScore": 3.6,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 7.5,
"baseSeverity": "High",
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "CVE-2019-15043",
"impactScore": null,
"integrityImpact": "None",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2019-15043",
"trust": 1.8,
"value": "HIGH"
},
{
"author": "CNVD",
"id": "CNVD-2019-30484",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201908-2274",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULMON",
"id": "CVE-2019-15043",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2019-30484"
},
{
"db": "VULMON",
"id": "CVE-2019-15043"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-008892"
},
{
"db": "CNNVD",
"id": "CNNVD-201908-2274"
},
{
"db": "NVD",
"id": "CVE-2019-15043"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana. Grafana Contains an access control vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Grafana is a set of open source monitoring tools that provide a visual monitoring interface at Grafana Labs. This tool is mainly used to monitor and analyze Graphite, InfluxDB and Prometheus. \n\nAn access control error vulnerability exists in Grafana that could be exploited by an attacker to cause a denial of service. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n==================================================================== \nRed Hat Security Advisory\n\nSynopsis: Moderate: grafana security, bug fix, and enhancement update\nAdvisory ID: RHSA-2020:1659-01\nProduct: Red Hat Enterprise Linux\nAdvisory URL: https://access.redhat.com/errata/RHSA-2020:1659\nIssue date: 2020-04-28\nCVE Names: CVE-2019-15043\n====================================================================\n1. Summary:\n\nAn update for grafana is now available for Red Hat Enterprise Linux 8. \n\nRed Hat Product Security has rated this update as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available for each vulnerability from\nthe CVE link(s) in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux AppStream (v. 8) - aarch64, ppc64le, s390x, x86_64\n\n3. Description:\n\nGrafana is an open source, feature rich metrics dashboard and graph editor\nfor Graphite, InfluxDB \u0026 OpenTSDB. \n\nThe following packages have been upgraded to a later upstream version:\ngrafana (6.3.6). (BZ#1725278)\n\nSecurity Fix(es):\n\n* grafana: incorrect access control in snapshot HTTP API leads to denial of\nservice (CVE-2019-15043)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section. \n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat\nEnterprise Linux 8.2 Release Notes linked from the References section. \n\n4. Solution:\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\n5. Package List:\n\nRed Hat Enterprise Linux AppStream (v. 8):\n\nSource:\ngrafana-6.3.6-1.el8.src.rpm\n\naarch64:\ngrafana-6.3.6-1.el8.aarch64.rpm\ngrafana-azure-monitor-6.3.6-1.el8.aarch64.rpm\ngrafana-cloudwatch-6.3.6-1.el8.aarch64.rpm\ngrafana-debuginfo-6.3.6-1.el8.aarch64.rpm\ngrafana-elasticsearch-6.3.6-1.el8.aarch64.rpm\ngrafana-graphite-6.3.6-1.el8.aarch64.rpm\ngrafana-influxdb-6.3.6-1.el8.aarch64.rpm\ngrafana-loki-6.3.6-1.el8.aarch64.rpm\ngrafana-mssql-6.3.6-1.el8.aarch64.rpm\ngrafana-mysql-6.3.6-1.el8.aarch64.rpm\ngrafana-opentsdb-6.3.6-1.el8.aarch64.rpm\ngrafana-postgres-6.3.6-1.el8.aarch64.rpm\ngrafana-prometheus-6.3.6-1.el8.aarch64.rpm\ngrafana-stackdriver-6.3.6-1.el8.aarch64.rpm\n\nppc64le:\ngrafana-6.3.6-1.el8.ppc64le.rpm\ngrafana-azure-monitor-6.3.6-1.el8.ppc64le.rpm\ngrafana-cloudwatch-6.3.6-1.el8.ppc64le.rpm\ngrafana-debuginfo-6.3.6-1.el8.ppc64le.rpm\ngrafana-elasticsearch-6.3.6-1.el8.ppc64le.rpm\ngrafana-graphite-6.3.6-1.el8.ppc64le.rpm\ngrafana-influxdb-6.3.6-1.el8.ppc64le.rpm\ngrafana-loki-6.3.6-1.el8.ppc64le.rpm\ngrafana-mssql-6.3.6-1.el8.ppc64le.rpm\ngrafana-mysql-6.3.6-1.el8.ppc64le.rpm\ngrafana-opentsdb-6.3.6-1.el8.ppc64le.rpm\ngrafana-postgres-6.3.6-1.el8.ppc64le.rpm\ngrafana-prometheus-6.3.6-1.el8.ppc64le.rpm\ngrafana-stackdriver-6.3.6-1.el8.ppc64le.rpm\n\ns390x:\ngrafana-6.3.6-1.el8.s390x.rpm\ngrafana-azure-monitor-6.3.6-1.el8.s390x.rpm\ngrafana-cloudwatch-6.3.6-1.el8.s390x.rpm\ngrafana-debuginfo-6.3.6-1.el8.s390x.rpm\ngrafana-elasticsearch-6.3.6-1.el8.s390x.rpm\ngrafana-graphite-6.3.6-1.el8.s390x.rpm\ngrafana-influxdb-6.3.6-1.el8.s390x.rpm\ngrafana-loki-6.3.6-1.el8.s390x.rpm\ngrafana-mssql-6.3.6-1.el8.s390x.rpm\ngrafana-mysql-6.3.6-1.el8.s390x.rpm\ngrafana-opentsdb-6.3.6-1.el8.s390x.rpm\ngrafana-postgres-6.3.6-1.el8.s390x.rpm\ngrafana-prometheus-6.3.6-1.el8.s390x.rpm\ngrafana-stackdriver-6.3.6-1.el8.s390x.rpm\n\nx86_64:\ngrafana-6.3.6-1.el8.x86_64.rpm\ngrafana-azure-monitor-6.3.6-1.el8.x86_64.rpm\ngrafana-cloudwatch-6.3.6-1.el8.x86_64.rpm\ngrafana-debuginfo-6.3.6-1.el8.x86_64.rpm\ngrafana-elasticsearch-6.3.6-1.el8.x86_64.rpm\ngrafana-graphite-6.3.6-1.el8.x86_64.rpm\ngrafana-influxdb-6.3.6-1.el8.x86_64.rpm\ngrafana-loki-6.3.6-1.el8.x86_64.rpm\ngrafana-mssql-6.3.6-1.el8.x86_64.rpm\ngrafana-mysql-6.3.6-1.el8.x86_64.rpm\ngrafana-opentsdb-6.3.6-1.el8.x86_64.rpm\ngrafana-postgres-6.3.6-1.el8.x86_64.rpm\ngrafana-prometheus-6.3.6-1.el8.x86_64.rpm\ngrafana-stackdriver-6.3.6-1.el8.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security. Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2019-15043\nhttps://access.redhat.com/security/updates/classification/#moderate\nhttps://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.2_release_notes/index\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2020 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niQIVAwUBXqhVtdzjgjWX9erEAQjjzQ//UMQ+3TmzrSdgb9VpHE0EhP2PMJi7A9oo\naieBhGN/4wPHmCoH2XHNSQPLkrmJf49ZkIPYzPcoZjs/DQ/oy7J/dT/nVNsW9Aul\n/JSVeWjlgNqFn4gZFe5LCtgqzt48FL/hSt1NgPqmpZWmyx1JXThTOed3PcbptmLO\nFgIj3Lhs7kcZk/LTvXNC4L3UyhUn5PJK+mXzAtNWTvW0Ca2cWGRVCtbssI/m87IL\nAR84wXaVj8xW054DLlojDfigUFXTlJr4PFM6tfFJwxUzgev8Xb6Sg09PM48FEd2L\nB7f1W9xb/27cqj0BDapp3vj8+ViKDOIDGeDZxlxdFMkQaK1mHNWOuNiIZCiGBDVd\n++OX/wjjxbnfUiRd/ounQLZadta4D9c6qs+xORwHaPVy6hAOeV9UELDY+nmXo3tO\nGDGPAmLyJqdYZR/4PO1O0Gp7/dOyL+51J57QpD/7coGrwAikkm9hF2bI1WabRe01\nnx/DEFdjOtmHXPR7g41BroCr81bom+J7SCru9MotBCVUm5HbW42mhPxixkb70Tlu\n+yUfSLZFO5Ve8VTF+/eMx817pwLQP/a6lkbJzVwwCYMIsgaaEgKXPj5BLM5P7hKk\nHyvYc7bWku+csEfM2Cf0qHFIYYxgBqZIp14UU70MZ0J6HQIMWCHXJqngUAzkvqR4\nk/AjDHhUTII=yev2\n-----END PGP SIGNATURE-----\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n",
"sources": [
{
"db": "NVD",
"id": "CVE-2019-15043"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-008892"
},
{
"db": "CNVD",
"id": "CNVD-2019-30484"
},
{
"db": "VULMON",
"id": "CVE-2019-15043"
},
{
"db": "PACKETSTORM",
"id": "157468"
}
],
"trust": 2.34
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2019-15043",
"trust": 3.2
},
{
"db": "JVNDB",
"id": "JVNDB-2019-008892",
"trust": 0.8
},
{
"db": "PACKETSTORM",
"id": "157468",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2019-30484",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2020.1508",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2019.4190",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2020.2492",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2019.4048.2",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2019.3854",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.1298",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.1135",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2020.1727.2",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-201908-2274",
"trust": 0.6
},
{
"db": "VULMON",
"id": "CVE-2019-15043",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2019-30484"
},
{
"db": "VULMON",
"id": "CVE-2019-15043"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-008892"
},
{
"db": "PACKETSTORM",
"id": "157468"
},
{
"db": "CNNVD",
"id": "CNNVD-201908-2274"
},
{
"db": "NVD",
"id": "CVE-2019-15043"
}
]
},
"id": "VAR-201909-0885",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2019-30484"
}
],
"trust": 0.06
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2019-30484"
}
]
},
"last_update_date": "2024-02-13T00:34:13.322000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Releases",
"trust": 0.8,
"url": "https://github.com/grafana/grafana/releases"
},
{
"title": "Grafana 5.4.5 and 6.3.4 Security Update",
"trust": 0.8,
"url": "https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569"
},
{
"title": "Release Notes v6.3.x",
"trust": 0.8,
"url": "https://community.grafana.com/t/release-notes-v6-3-x/19202"
},
{
"title": "1Grafana 5.4.5 and 6.3.4 Released with Important Security Fix",
"trust": 0.8,
"url": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/"
},
{
"title": "Patch for Grafana Access Control Error Vulnerability",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/179003"
},
{
"title": "Grafana Fixes for access control error vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=97782"
},
{
"title": "Red Hat: Moderate: grafana security, bug fix, and enhancement update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20201659 - security advisory"
},
{
"title": "Arch Linux Issues: ",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_issues\u0026qid=cve-2019-15043"
},
{
"title": "CVE-2019-15043 POC",
"trust": 0.1,
"url": "https://github.com/h0ffayyy/cve-2019-15043 "
},
{
"title": "CVE-POC",
"trust": 0.1,
"url": "https://github.com/n1sh1th/cve-poc "
},
{
"title": "F5\u306e\u8106\u5f31\u6027\u60c5\u5831",
"trust": 0.1,
"url": "https://github.com/dntyo/f5_vulnerability "
},
{
"title": "Nuclei Templates\nResources",
"trust": 0.1,
"url": "https://github.com/merlinepedra25/nuclei-templates "
},
{
"title": "Nuclei Templates\nResources",
"trust": 0.1,
"url": "https://github.com/merlinepedra/nuclei-templates "
},
{
"title": "Kenzer Templates [1289]",
"trust": 0.1,
"url": "https://github.com/elsfa7-110/kenzer-templates "
},
{
"title": "PoC in GitHub",
"trust": 0.1,
"url": "https://github.com/developer3000s/poc-in-github "
},
{
"title": "PoC in GitHub",
"trust": 0.1,
"url": "https://github.com/hectorgie/poc-in-github "
},
{
"title": "PoC in GitHub",
"trust": 0.1,
"url": "https://github.com/0xt11/cve-poc "
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2019-30484"
},
{
"db": "VULMON",
"id": "CVE-2019-15043"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-008892"
},
{
"db": "CNNVD",
"id": "CNNVD-201908-2274"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-306",
"trust": 1.0
},
{
"problemtype": "CWE-284",
"trust": 0.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2019-008892"
},
{
"db": "NVD",
"id": "CVE-2019-15043"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 1.7,
"url": "https://community.grafana.com/t/grafana-5-4-5-and-6-3-4-security-update/20569"
},
{
"trust": 1.7,
"url": "https://grafana.com/blog/2019/08/29/grafana-5.4.5-and-6.3.4-released-with-important-security-fix/"
},
{
"trust": 1.7,
"url": "https://community.grafana.com/t/release-notes-v6-3-x/19202"
},
{
"trust": 1.7,
"url": "https://github.com/grafana/grafana/releases"
},
{
"trust": 1.7,
"url": "https://security.netapp.com/advisory/ntap-20191004-0004/"
},
{
"trust": 1.7,
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00060.html"
},
{
"trust": 1.7,
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00083.html"
},
{
"trust": 1.7,
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00009.html"
},
{
"trust": 1.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-15043"
},
{
"trust": 1.3,
"url": "https://access.redhat.com/security/cve/cve-2019-15043"
},
{
"trust": 1.1,
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/rf5argyx3wyb7h2fdr7vawteq27ux3fu/"
},
{
"trust": 1.1,
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/uo4nbl7pkw4osfrvzengc42ewejv2yah/"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-15043"
},
{
"trust": 0.6,
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/uo4nbl7pkw4osfrvzengc42ewejv2yah/"
},
{
"trust": 0.6,
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/rf5argyx3wyb7h2fdr7vawteq27ux3fu/"
},
{
"trust": 0.6,
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192671-1.html"
},
{
"trust": 0.6,
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192867-1.html"
},
{
"trust": 0.6,
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192906-1.html"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2019.4048.2/"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.1135"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.1298"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2019.4190/"
},
{
"trust": 0.6,
"url": "https://vigilance.fr/vulnerability/grafana-denial-of-service-via-http-api-30211"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2020.1508/"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2020.2492/"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2019.3854/"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2020.1727.2/"
},
{
"trust": 0.6,
"url": "https://packetstormsecurity.com/files/157468/red-hat-security-advisory-2020-1659-01.html"
},
{
"trust": 0.2,
"url": "https://access.redhat.com/errata/rhsa-2020:1659"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/306.html"
},
{
"trust": 0.1,
"url": "https://github.com/h0ffayyy/cve-2019-15043"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://security.archlinux.org/cve-2019-15043"
},
{
"trust": 0.1,
"url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/articles/11258"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.2_release_notes/index"
},
{
"trust": 0.1,
"url": "https://bugzilla.redhat.com/):"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/team/key/"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"trust": 0.1,
"url": "https://access.redhat.com/security/team/contact/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2019-30484"
},
{
"db": "VULMON",
"id": "CVE-2019-15043"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-008892"
},
{
"db": "PACKETSTORM",
"id": "157468"
},
{
"db": "CNNVD",
"id": "CNNVD-201908-2274"
},
{
"db": "NVD",
"id": "CVE-2019-15043"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CNVD",
"id": "CNVD-2019-30484"
},
{
"db": "VULMON",
"id": "CVE-2019-15043"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-008892"
},
{
"db": "PACKETSTORM",
"id": "157468"
},
{
"db": "CNNVD",
"id": "CNNVD-201908-2274"
},
{
"db": "NVD",
"id": "CVE-2019-15043"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2019-09-05T00:00:00",
"db": "CNVD",
"id": "CNVD-2019-30484"
},
{
"date": "2019-09-03T00:00:00",
"db": "VULMON",
"id": "CVE-2019-15043"
},
{
"date": "2019-09-09T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2019-008892"
},
{
"date": "2020-04-28T20:40:11",
"db": "PACKETSTORM",
"id": "157468"
},
{
"date": "2019-08-30T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201908-2274"
},
{
"date": "2019-09-03T12:15:10.933000",
"db": "NVD",
"id": "CVE-2019-15043"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2019-09-05T00:00:00",
"db": "CNVD",
"id": "CNVD-2019-30484"
},
{
"date": "2023-11-07T00:00:00",
"db": "VULMON",
"id": "CVE-2019-15043"
},
{
"date": "2019-09-09T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2019-008892"
},
{
"date": "2021-04-19T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201908-2274"
},
{
"date": "2023-11-07T03:05:24.357000",
"db": "NVD",
"id": "CVE-2019-15043"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201908-2274"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Grafana Access Control Error Vulnerability",
"sources": [
{
"db": "CNVD",
"id": "CNVD-2019-30484"
},
{
"db": "CNNVD",
"id": "CNNVD-201908-2274"
}
],
"trust": 1.2
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "access control error",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201908-2274"
}
],
"trust": 0.6
}
}
SUSE-SU-2021:1962-1
Vulnerability from csaf_suse - Published: 2021-06-11 13:13 - Updated: 2021-06-11 13:13Summary
Security update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone
Severity
Moderate
Notes
Title of the patch: Security update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone
Description of the patch: This update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone contains the following fixes:
Security fixes included in this update:
cassandra:
- CVE-2020-17516: Fixed an issue where encryption between nodes was not enforced
correctly for certain internode_encryption settings (bsc#1181689)
grafana:
- CVE-2018-18623, CVE-2018-18624, CVE-2018-18625: Fixed multiple cross
site scripting vulnerabilities in the dashboard. (bsc#1172450)
- CVE-2021-27358: Fixed a denial of service via remote API call. (bsc#1183803)
- CVE-2019-15043: Fixed a denial of service by an unauthenticated user
in the snapshot HTTP API (bsc#1148383)
- CVE-2020-13379: Fixed an information leak to unauthenticated users. (bsc#1172409)
- CVE-2020-12052: Fixed a cross site scripting vulnerability with the annotation
popup (bsc#1170657)
- CVE-2018-19039: Fixed an issue where a privileged user could
exfiltrate files (bsc#1115960)
- CVE-2020-11110: Fixed a stored cross site scripting vulnerability. (bsc#1174583)
- CVE-2020-24303: Fixed a cross site scripting vulnerability in a query alias for
ElasticSearch datasources (bsc#1178243)
kibana:
- CVE-2017-11499: Fixed a vulnerability in nodejs, related to the HashTable
implementation, which could cause a denial of service. (bsc#1044849)
- CVE-2017-11481: Fixed a cross site scripting vulnerability via via URL fields.
(bsc#1044849)
- CVE-2020-10743: Fixed a clickjacking issue because X-Frame-Option was not used
by default. (bsc#1171909)
python-Django:
- CVE-2021-23336: Fixed a web cache poisoning via django.utils.http.limited_parse_qsl().
(bsc#1182433)
- CVE-2021-28658: Fixed a directory traversal via uploaded files. (bsc#1184148)
- CVE-2021-31542: Fixed a directory traversal via uploaded files with suitably crafted
file names. (bsc#1185623)
- CVE-2021-33203: Fixed potential path-traversal via admindocs' TemplateDetailView.
(bsc#1186608)
- CVE-2021-33571: Tighten validator checks to not allow leading zeros in IPv4 addresses,
which potentially leads to further attacks. (bsc#1186611)
python-py:
- CVE-2020-29651: Fixed a denial of service via regular expressions. (bsc#1179805)
python-pysaml2:
- CVE-2021-21238: Fixed improper verification of cryptographic signatures for signed
SAML documents. (bsc#1181277)
- CVE-2021-21239: Fixed improper verification of cryptographic signatures when using
CryptoBackendXmlSec1(). (bsc#1181278)
rubygem-activerecord-session_store:
- CVE-2019-25025: Fixed a timing attacks targeting the session id which could allow
an attack to hijack sessions. (bsc#1183174)
Non-security changes included in this update:
Changes in ardana-neutron:
- Update to version 9.0+git.1615223676.777f0b3:
* Allow users to stop monitoring rootwrap daemon (bsc#1182317)
Changes in ardana-swift:
- Update to version 9.0+git.1618235096.90974ed:
* Run swiftlm-scan in the UTC timezone (bsc#1181690)
Changes in cassandra:
- update to 3.11.10 (bsc#1181689, CVE-2020-17516)
* Fix digest computation for queries with fetched but non queried columns (CASSANDRA-15962)
* Reduce amount of allocations during batch statement execution (CASSANDRA-16201)
* Update jflex-1.6.0.jar to match upstream (CASSANDRA-16393)
* Fix DecimalDeserializer#toString OOM (CASSANDRA-14925)
* Rate limit validation compactions using compaction_throughput_mb_per_sec (CASSANDRA-16161)
* SASI's `max_compaction_flush_memory_in_mb` settings over 100GB revert to default of 1GB (CASSANDRA-16071)
* Prevent unbounded number of pending flushing tasks (CASSANDRA-16261)
* Improve empty hint file handling during startup (CASSANDRA-16162)
* Allow empty string in collections with COPY FROM in cqlsh (CASSANDRA-16372)
* Fix skipping on pre-3.0 created compact storage sstables due to missing primary key liveness (CASSANDRA-16226)
* Extend the exclusion of replica filtering protection to other indices instead of just SASI (CASSANDRA-16311)
* Synchronize transaction logs for JBOD (CASSANDRA-16225)
* Fix the counting of cells per partition (CASSANDRA-16259)
* Fix serial read/non-applying CAS linearizability (CASSANDRA-12126)
* Avoid potential NPE in JVMStabilityInspector (CASSANDRA-16294)
* Improved check of num_tokens against the length of initial_token (CASSANDRA-14477)
* Fix a race condition on ColumnFamilyStore and TableMetrics (CASSANDRA-16228)
* Remove the SEPExecutor blocking behavior (CASSANDRA-16186)
* Fix invalid cell value skipping when reading from disk (CASSANDRA-16223)
* Prevent invoking enable/disable gossip when not in NORMAL (CASSANDRA-16146)
* Wait for schema agreement when bootstrapping (CASSANDRA-15158)
* Fix the histogram merge of the table metrics (CASSANDRA-16259)
* Synchronize Keyspace instance store/clear (CASSANDRA-16210)
* Fix ColumnFilter to avoid querying cells of unselected complex columns (CASSANDRA-15977)
* Fix memory leak in CompressedChunkReader (CASSANDRA-15880)
* Don't attempt value skipping with mixed version cluster (CASSANDRA-15833)
* Avoid failing compactions with very large partitions (CASSANDRA-15164)
* Make sure LCS handles duplicate sstable added/removed notifications correctly (CASSANDRA-14103)
* Fix OOM when terminating repair session (CASSANDRA-15902)
* Avoid marking shutting down nodes as up after receiving gossip shutdown message (CASSANDRA-16094)
* Check SSTables for latest version before dropping compact storage (CASSANDRA-16063)
* Handle unexpected columns due to schema races (CASSANDRA-15899)
* Add flag to ignore unreplicated keyspaces during repair (CASSANDRA-15160)
* Package tools/bin scripts as executable (CASSANDRA-16151)
* Fixed a NullPointerException when calling nodetool enablethrift (CASSANDRA-16127)
* Correctly interpret SASI's `max_compaction_flush_memory_in_mb` setting in megabytes not bytes (CASSANDRA-16071)
* Fix short read protection for GROUP BY queries (CASSANDRA-15459)
* Frozen RawTuple is not annotated with frozen in the toString method (CASSANDRA-15857)
Merged from 3.0:
* Use IF NOT EXISTS for index and UDT create statements in snapshot schema files (CASSANDRA-13935)
* Fix gossip shutdown order (CASSANDRA-15816)
* Remove broken 'defrag-on-read' optimization (CASSANDRA-15432)
* Check for endpoint collision with hibernating nodes (CASSANDRA-14599)
* Operational improvements and hardening for replica filtering protection (CASSANDRA-15907)
* stop_paranoid disk failure policy is ignored on CorruptSSTableException after node is up (CASSANDRA-15191)
* Forbid altering UDTs used in partition keys (CASSANDRA-15933)
* Fix empty/null json string representation (CASSANDRA-15896)
* 3.x fails to start if commit log has range tombstones from a column which is also deleted (CASSANDRA-15970)
* Handle difference in timestamp precision between java8 and java11 in LogFIle.java (CASSANDRA-16050)
Merged from 2.2:
* Fix CQL parsing of collections when the column type is reversed (CASSANDRA-15814)
* Only allow strings to be passed to JMX authentication (CASSANDRA-16077)
* Fix cqlsh output when fetching all rows in batch mode (CASSANDRA-15905)
* Upgrade Jackson to 2.9.10 (CASSANDRA-15867)
* Fix CQL formatting of read command restrictions for slow query log (CASSANDRA-15503)
* Allow sstableloader to use SSL on the native port (CASSANDRA-14904)
* Backport CASSANDRA-12189: escape string literals (CASSANDRA-15948)
* Avoid hinted handoff per-host throttle being arounded to 0 in large cluster (CASSANDRA-15859)
* Avoid emitting empty range tombstones from RangeTombstoneList (CASSANDRA-15924)
* Avoid thread starvation, and improve compare-and-swap performance, in the slab allocators (CASSANDRA-15922)
* Add token to tombstone warning and error messages (CASSANDRA-15890)
* Fixed range read concurrency factor computation and capped as 10 times tpc cores (CASSANDRA-15752)
* Catch exception on bootstrap resume and init native transport (CASSANDRA-15863)
* Fix replica-side filtering returning stale data with CL > ONE (CASSANDRA-8272, CASSANDRA-8273)
* Fix duplicated row on 2.x upgrades when multi-rows range tombstones interact with collection ones (CASSANDRA-15805)
* Rely on snapshotted session infos on StreamResultFuture.maybeComplete to avoid race conditions (CASSANDRA-15667)
* EmptyType doesn't override writeValue so could attempt to write bytes when expected not to (CASSANDRA-15790)
* Fix index queries on partition key columns when some partitions contains only static data (CASSANDRA-13666)
* Avoid creating duplicate rows during major upgrades (CASSANDRA-15789)
* liveDiskSpaceUsed and totalDiskSpaceUsed get corrupted if IndexSummaryRedistribution gets interrupted (CASSANDRA-15674)
* Fix Debian init start/stop (CASSANDRA-15770)
* Fix infinite loop on index query paging in tables with clustering (CASSANDRA-14242)
* Fix chunk index overflow due to large sstable with small chunk length (CASSANDRA-15595)
* Allow selecting static column only when querying static index (CASSANDRA-14242)
* cqlsh return non-zero status when STDIN CQL fails (CASSANDRA-15623)
* Don't skip sstables in slice queries based only on local min/max/deletion timestamp (CASSANDRA-15690)
* Memtable memory allocations may deadlock (CASSANDRA-15367)
* Run evictFromMembership in GossipStage (CASSANDRA-15592)
* Fix nomenclature of allow and deny lists (CASSANDRA-15862)
* Remove generated files from source artifact (CASSANDRA-15849)
* Remove duplicated tools binaries from tarballs (CASSANDRA-15768)
* Duplicate results with DISTINCT queries in mixed mode (CASSANDRA-15501)
* Disable JMX rebinding (CASSANDRA-15653)
* Fix writing of snapshot manifest when the table has table-backed secondary indexes (CASSANDRA-10968)
* Fix parse error in cqlsh COPY FROM and formatting for map of blobs (CASSANDRA-15679)
* Fix Commit log replays when static column clustering keys are collections (CASSANDRA-14365)
* Fix Red Hat init script on newer systemd versions (CASSANDRA-15273)
* Allow EXTRA_CLASSPATH to work on tar/source installations (CASSANDRA-15567)
* Fix bad UDT sstable metadata serialization headers written by C* 3.0 on upgrade and in sstablescrub (CASSANDRA-15035)
* Fix nodetool compactionstats showing extra pending task for TWCS - patch implemented (CASSANDRA-15409)
* Fix SELECT JSON formatting for the 'duration' type (CASSANDRA-15075)
* Fix LegacyLayout to have same behavior as 2.x when handling unknown column names (CASSANDRA-15081)
* Update nodetool help stop output (CASSANDRA-15401)
* Run in-jvm upgrade dtests in circleci (CASSANDRA-15506)
* Include updates to static column in mutation size calculations (CASSANDRA-15293)
* Fix point-in-time recoevery ignoring timestamp of updates to static columns (CASSANDRA-15292)
* GC logs are also put under $CASSANDRA_LOG_DIR (CASSANDRA-14306)
* Fix sstabledump's position key value when partitions have multiple rows (CASSANDRA-14721)
* Avoid over-scanning data directories in LogFile.verify() (CASSANDRA-15364)
* Bump generations and document changes to system_distributed and system_traces in 3.0, 3.11
(CASSANDRA-15441)
* Fix system_traces creation timestamp; optimise system keyspace upgrades (CASSANDRA-15398)
* Fix various data directory prefix matching issues (CASSANDRA-13974)
* Minimize clustering values in metadata collector (CASSANDRA-15400)
* Avoid over-trimming of results in mixed mode clusters (CASSANDRA-15405)
* validate value sizes in LegacyLayout (CASSANDRA-15373)
* Ensure that tracing doesn't break connections in 3.x/4.0 mixed mode by default (CASSANDRA-15385)
* Make sure index summary redistribution does not start when compactions are paused (CASSANDRA-15265)
* Ensure legacy rows have primary key livenessinfo when they contain illegal cells (CASSANDRA-15365)
* Fix race condition when setting bootstrap flags (CASSANDRA-14878)
* Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)
* Fix SELECT JSON output for empty blobs (CASSANDRA-15435)
* In-JVM DTest: Set correct internode message version for upgrade test (CASSANDRA-15371)
* In-JVM DTest: Support NodeTool in dtest (CASSANDRA-15429)
* Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)
* Fix SASI non-literal string comparisons (range operators) (CASSANDRA-15169)
* Make sure user defined compaction transactions are always closed (CASSANDRA-15123)
* Fix cassandra-env.sh to use $CASSANDRA_CONF to find cassandra-jaas.config (CASSANDRA-14305)
* Fixed nodetool cfstats printing index name twice (CASSANDRA-14903)
* Add flag to disable SASI indexes, and warnings on creation (CASSANDRA-14866)
* Add ability to cap max negotiable protocol version (CASSANDRA-15193)
* Gossip tokens on startup if available (CASSANDRA-15335)
* Fix resource leak in CompressedSequentialWriter (CASSANDRA-15340)
* Fix bad merge that reverted CASSANDRA-14993 (CASSANDRA-15289)
* Fix LegacyLayout RangeTombstoneList IndexOutOfBoundsException when upgrading and RangeTombstone bounds are asymmetric (CASSANDRA-15172)
* Fix NPE when using allocate_tokens_for_keyspace on new DC/rack (CASSANDRA-14952)
* Filter sstables earlier when running cleanup (CASSANDRA-15100)
* Use mean row count instead of mean column count for index selectivity calculation (CASSANDRA-15259)
* Avoid updating unchanged gossip states (CASSANDRA-15097)
* Prevent recreation of previously dropped columns with a different kind (CASSANDRA-14948)
* Prevent client requests from blocking on executor task queue (CASSANDRA-15013)
* Toughen up column drop/recreate type validations (CASSANDRA-15204)
* LegacyLayout should handle paging states that cross a collection column (CASSANDRA-15201)
* Prevent RuntimeException when username or password is empty/null (CASSANDRA-15198)
* Multiget thrift query returns null records after digest mismatch (CASSANDRA-14812)
* Skipping illegal legacy cells can break reverse iteration of indexed partitions (CASSANDRA-15178)
* Handle paging states serialized with a different version than the session's (CASSANDRA-15176)
* Throw IOE instead of asserting on unsupporter peer versions (CASSANDRA-15066)
* Update token metadata when handling MOVING/REMOVING_TOKEN events (CASSANDRA-15120)
* Add ability to customize cassandra log directory using $CASSANDRA_LOG_DIR (CASSANDRA-15090)
* Skip cells with illegal column names when reading legacy sstables (CASSANDRA-15086)
* Fix assorted gossip races and add related runtime checks (CASSANDRA-15059)
* Fix mixed mode partition range scans with limit (CASSANDRA-15072)
* cassandra-stress works with frozen collections: list and set (CASSANDRA-14907)
* Fix handling FS errors on writing and reading flat files - LogTransaction and hints (CASSANDRA-15053)
* Avoid double closing the iterator to avoid overcounting the number of requests (CASSANDRA-15058)
* Improve `nodetool status -r` speed (CASSANDRA-14847)
* Improve merkle tree size and time on heap (CASSANDRA-14096)
* Add missing commands to nodetool_completion (CASSANDRA-14916)
* Anti-compaction temporarily corrupts sstable state for readers (CASSANDRA-15004)
* Catch non-IOException in FileUtils.close to make sure that all resources are closed (CASSANDRA-15225)
* Handle exceptions during authentication/authorization (CASSANDRA-15041)
* Support cross version messaging in in-jvm upgrade dtests (CASSANDRA-15078)
* Fix index summary redistribution cancellation (CASSANDRA-15045)
* Fixing invalid CQL in security documentation (CASSANDRA-15020)
* Allow instance class loaders to be garbage collected for inJVM dtest (CASSANDRA-15170)
* Add support for network topology and query tracing for inJVM dtest (CASSANDRA-15319)
* Correct sstable sorting for garbagecollect and levelled compaction (CASSANDRA-14870)
* Severe concurrency issues in STCS,DTCS,TWCS,TMD.Topology,TypeParser
* Add a script to make running the cqlsh tests in cassandra repo easier (CASSANDRA-14951)
* If SizeEstimatesRecorder misses a 'onDropTable' notification, the size_estimates table will never be cleared for that table. (CASSANDRA-14905)
* Counters fail to increment in 2.1/2.2 to 3.X mixed version clusters (CASSANDRA-14958)
* Streaming needs to synchronise access to LifecycleTransaction (CASSANDRA-14554)
* Fix cassandra-stress write hang with default options (CASSANDRA-14616)
* Differentiate between slices and RTs when decoding legacy bounds (CASSANDRA-14919)
* Netty epoll IOExceptions caused by unclean client disconnects being logged at INFO (CASSANDRA-14909)
* Unfiltered.isEmpty conflicts with Row extends AbstractCollection.isEmpty (CASSANDRA-14588)
* RangeTombstoneList doesn't properly clean up mergeable or superseded rts in some cases (CASSANDRA-14894)
* Fix handling of collection tombstones for dropped columns from legacy sstables (CASSANDRA-14912)
* Throw exception if Columns serialized subset encode more columns than possible (CASSANDRA-14591)
* Drop/add column name with different Kind can result in corruption (CASSANDRA-14843)
* Fix missing rows when reading 2.1 SSTables with static columns in 3.0 (CASSANDRA-14873)
* Move TWCS message 'No compaction necessary for bucket size' to Trace level (CASSANDRA-14884)
* Sstable min/max metadata can cause data loss (CASSANDRA-14861)
* Dropped columns can cause reverse sstable iteration to return prematurely (CASSANDRA-14838)
* Legacy sstables with multi block range tombstones create invalid bound sequences (CASSANDRA-14823)
* Expand range tombstone validation checks to multiple interim request stages (CASSANDRA-14824)
* Reverse order reads can return incomplete results (CASSANDRA-14803)
* Avoid calling iter.next() in a loop when notifying indexers about range tombstones (CASSANDRA-14794)
* Fix purging semi-expired RT boundaries in reversed iterators (CASSANDRA-14672)
* DESC order reads can fail to return the last Unfiltered in the partition (CASSANDRA-14766)
* Fix corrupted collection deletions for dropped columns in 3.0 <-> 2.{1,2} messages (CASSANDRA-14568)
* Fix corrupted static collection deletions in 3.0 <-> 2.{1,2} messages (CASSANDRA-14568)
* Handle failures in parallelAllSSTableOperation (cleanup/upgradesstables/etc) (CASSANDRA-14657)
* Improve TokenMetaData cache populating performance avoid long locking (CASSANDRA-14660)
* Backport: Flush netty client messages immediately (not by default) (CASSANDRA-13651)
* Fix static column order for SELECT * wildcard queries (CASSANDRA-14638)
* sstableloader should use discovered broadcast address to connect intra-cluster (CASSANDRA-14522)
* Fix reading columns with non-UTF names from schema (CASSANDRA-14468)
* Don't enable client transports when bootstrap is pending (CASSANDRA-14525)
* MigrationManager attempts to pull schema from different major version nodes (CASSANDRA-14928)
* Fix incorrect cqlsh results when selecting same columns multiple times (CASSANDRA-13262)
* Returns null instead of NaN or Infinity in JSON strings (CASSANDRA-14377)
* Paged Range Slice queries with DISTINCT can drop rows from results (CASSANDRA-14956)
Changes in crowbar-openstack:
- Update to version 6.0+git.1616146717.a89ae0f4e:
* monasca: restart Kibana on update (bsc#1044849)
Changes in grafana
- Add CVE-2021-27358.patch (bsc#1183803, CVE-2021-27358)
* Prevent unauthenticated remote attackers from causing a DoS through the
snapshots API.
Changes in kibana:
- Ensure /etc/sysconfig/kibana is present
- Update to Kibana 4.6.6 (bsc#1044849, CVE-2017-11499, ESA-2017-14, ESA-2017-16)
* [4.6] ignore forked code for babel transpile build phase (#13483)
* Allow more than match queries in custom filters (#8614) (#10857)
* [state] don't make extra $location.replace() calls (#9954)
* [optimizer] move to querystring-browser package for up-to-date api
* [state/unhashUrl] use encode-uri-query to generate cleanly encoded urls
* server: refactor log_interceptor to be more DRY (#9617)
* server: downgrade ECANCELED logs to debug (#9616)
* server: do not treat logged warnings as errors (#8746) (#9610)
* [server/logger] downgrade EPIPE errors to debug level (#9023)
* Add basepath when redirecting from a trailling slash (#9035)
* [es/kibanaIndex] use unmapped_type rather than ignore_unmapped (#8968)
* [server/shortUrl] validate urls before shortening them
- Add CVE-2017-11481.patch (bsc#1044849, CVE-2017-11481)
* This fixes an XSS vulnerability in URL fields
- Remove %dir declaration from /opt/kibana/optimize to ensure
no files owned by root end up in there
- Exclude /opt/kibana/optimize from %fdupes
- Restart service on upgrade
- Do not copy LICENSE.txt and README.txt to /opt/kibana
- Fix rpmlint warnings/errors
- Switch to explicit patch application
- Fix source URL
- Fix logic for systemd/systemv detection
- Add 0001-Configurable-custom-response-headers-for-server.patch
(bsc#1171909, CVE-2020-10743)
- Added kibana.yml symlink (bsc#1048688, FATE#323204)
Changes in openstack-dashboard:
- Update to version horizon-14.1.1.dev11:
* Consume tempest-horizon from PyPI release
Changes in openstack-ironic:
- Update to version ironic-11.1.5.dev17:
* Remove lower-constraints job
Changes in openstack-ironic:
- Update to version ironic-11.1.5.dev17:
* Remove lower-constraints job
Changes in openstack-neutron:
- Update to version neutron-13.0.8.dev164:
* Schedule networks to new segments if needed
- Update to version neutron-13.0.8.dev162:
* Fix invalid JSON generated by quota details
- Update to version neutron-13.0.8.dev160:
* Fix deletion of rfp interfaces when router is re-enabled
- Update to version neutron-13.0.8.dev159:
* [OVS FW] Allow egress ICMPv6 only for know addresses
* [OVS FW] Clean conntrack entries with mark == CT\_MARK\_INVALID
- Update to version neutron-13.0.8.dev155:
* Fix removal of dvr-src mac flows when non-gateway port on router is deleted
- Update to version neutron-13.0.8.dev153:
* Add some wait time between stopping and starting again ovsdb monitor
* Workaround for TCP checksum issue with ovs-dpdk and veth pair
- Update to version neutron-13.0.8.dev149:
* Fix wrong packet\_type set for IPv6 GRE tunnels in OVS
- Update to version neutron-13.0.8.dev148:
* Fix losses of ovs flows when ovs is restarted
Changes in openstack-neutron:
- Update to version neutron-13.0.8.dev164:
* Schedule networks to new segments if needed
- Update to version neutron-13.0.8.dev162:
* Fix invalid JSON generated by quota details
- Update to version neutron-13.0.8.dev160:
* Fix deletion of rfp interfaces when router is re-enabled
- Update to version neutron-13.0.8.dev159:
* [OVS FW] Allow egress ICMPv6 only for know addresses
* [OVS FW] Clean conntrack entries with mark == CT\_MARK\_INVALID
- Update to version neutron-13.0.8.dev155:
* Fix removal of dvr-src mac flows when non-gateway port on router is deleted
- Update to version neutron-13.0.8.dev153:
* Add some wait time between stopping and starting again ovsdb monitor
* Workaround for TCP checksum issue with ovs-dpdk and veth pair
- Update to version neutron-13.0.8.dev149:
* Fix wrong packet\_type set for IPv6 GRE tunnels in OVS
- Update to version neutron-13.0.8.dev148:
* Fix losses of ovs flows when ovs is restarted
Changes in openstack-neutron-gbp:
- Update to version group-based-policy-12.0.1.dev29:
* gbp-validate: Tenant and resource level scoping
2014.2.0rc1
- Update to version group-based-policy-12.0.1.dev27:
* Import data\_utils from the new location
- Update to version group-based-policy-12.0.1.dev26:
* Add SNAT port's Mac Address to the host\_snat\_ips dictionary
- Update to version group-based-policy-12.0.1.dev25:
* Add support for victoria
2014.2.rc1
- Update to version group-based-policy-12.0.1.dev24:
* Fix deletion of SVI networks
- Update to version group-based-policy-12.0.1.dev23:
* Allow per-port qos configuration on dhcp port
2014.2rc1
- Update to version group-based-policy-12.0.1.dev22:
* Add connectivity parameter to driver
* [AIM] Fix ERSPAN extension
2014.2.rc1
- Update to version group-based-policy-12.0.1.dev19:
* Fix exception with cleanup
2014.2.0rc1
- Update to version group-based-policy-12.0.1.dev18:
* Add workaround to get\_subnets
Changes in openstack-nova:
- Update to version nova-18.3.1.dev82:
* [stable-only] gate: Pin CEPH\_RELEASE to nautilus in LM hook
* Change default num\_retries for glance to 3
Changes in openstack-nova:
- Update to version nova-18.3.1.dev82:
* [stable-only] gate: Pin CEPH\_RELEASE to nautilus in LM hook
* Change default num\_retries for glance to 3
Changes in python-Django1:
- Add CVE-2021-33203.patch (bsc#1186608, CVE-2021-33203)
* Fixed potential path-traversal via admindocs' TemplateDetailView.
- Add CVE-2021-33571.patch (bsc#1186611, CVE-2021-33571)
* Prevented leading zeros in IPv4 addresses.
- Add CVE-2021-31542.patch (bsc#1185623, CVE-2021-31542)
* Fixed CVE-2021-31542 -- Tightened path and file name sanitation in file
uploads.
- Add CVE-2021-28658.patch (bsc#1184148, CVE-2021-28658)
* Fixed potential directory-traversal via uploaded files
- Add CVE-2021-23336.patch (bsc#1182433, CVE-2021-23336)
* Fixed web cache poisoning via django.utils.http.limited_parse_qsl()
Changes in python-py:
- Add CVE-2020-29651.patch ((bsc#1179805, CVE-2020-29651)
* svnwc: fix regular expression vulnerable to DoS in blame
functionality
Changes in python-pysaml2:
- Fix patches (SOC-11453)
* 0005-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch
- rename saml2.xml to saml2.samlxml to avoid overriding
the xml module in the system module path
- add missing __init__.py files
- add missing saml2/data package to setup.py
* 0007-Make-previous-commits-python2-compatible.patch so as not to
- Adjust to saml2.xml to saml2.samlxml changes
- Fix a few more syntax errors and Python2-isms.
- Fix CVE-2021-21238, bsc#1181277 with
0002-Strengthen-XSW-tests.patch ,
0003-Fix-the-parser-to-not-break-on-ePTID-AttributeValues.patch ,
0004-Add-xsd-schemas.patch ,
0005-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch .
This adds a dependency on python-xmlschema, which depends on
python-elementpath, thus both need to be added for this to work.
The used python-xmlschema needs to support the sandbox argument
which was added in 1.2.0 and refined in 1.2.1, but that version
doesn't support python2, so a patched version that does both is
needed.
Add 0007-Make-previous-commits-python2-compatible.patch to
not add a dependency on reportlib_resources and make other
changes python2 compatible.
. Fix CVE-2021-21239, bsc#1181278 with
0006-Fix-CVE-2021-21239-Restrict-the-key-data-that-xmlsec.patch
Changes in python-xmlschema:
- Add 3 patches to backport sandbox argument, which is needed by a security fix
in python-pysaml2 and one patch to make backport python2 compatible.
- Upstream url changed
- Add rpmlintrc to make it work on Leap 42.3
- Update to 1.0.18:
* Fix for *ModelVisitor.iter_unordered_content()*
* Fixed default converter, AbderaConverter and JsonMLConverter for xs:anyType decode
* Fixed validation tests with all converters
* Added UnorderedConverter to validation tests
- Update to 1.0.17:
* Enhancement of validation-only speed (~15%)
* Added *is_valid()* and *iter_errors()* to module API
- Update to 1.0.16:
* Improved XMLResource class for working with compressed files
* Fix for validation with XSD wildcards and 'lax' process content
* Fix ambiguous items validation for xs:choice and xs:sequence models
- Handle UnicodeDecodeErrors during build process
- Update to 1.0.15:
* Improved XPath 2.0 bindings
* Added logging for schema initialization and building (handled with argument loglevel)
* Update encoding of collapsed contents with a new model based reordering method
* Removed XLink namespace from meta-schema (loaded from a fallback location like XHTML)
* Fixed half of failed W3C instance tests (remain 255 over 15344 tests)
- Initial commit, needed by pytest 5.1.2
Changes in python-elementpath:
- Update to 1.3.1:
* Improved schema proxy
* Improved XSD type matching using paths
* Cached parent path for XPathContext (only Python 3)
* Improve typed selection with TypedAttribute and TypedElement named-tuples
* Add iter_results to XPathContext
* Remove XMLSchemaProxy from package
* Fix descendant shortcut operator '//'
* Fix text() function
* Fix typed select of '(name)' token
* Fix 24-hour time for DateTime
- Skip test_hashing to fix 32bit builds
- Initial commit needed by python-xmlschema
Changes in rubygem-activerecord-session_store:
- added CVE-2019-25025.patch (CVE-2019-25025, bsc#1183174)
* This requires CVE-2019-16782.patch to be included in
rubygem-actionpack-4_2 to work correctly.
Changes in venv-openstack-keystone
- Add python-xmlschema and python-elementpath for new python-pysaml2 version.
Patchnames: SUSE-2021-1962,SUSE-OpenStack-Cloud-9-2021-1962,SUSE-OpenStack-Cloud-Crowbar-9-2021-1962
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.4 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.1 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.1 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.1 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.1 (High)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.9 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
6.1 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.4 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.9 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.4 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.5 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.9 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
6.5 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.9 (Medium)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
103 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
108 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone contains the following fixes:\n\nSecurity fixes included in this update:\n\ncassandra:\n- CVE-2020-17516: Fixed an issue where encryption between nodes was not enforced\n correctly for certain internode_encryption settings (bsc#1181689)\n\ngrafana:\n- CVE-2018-18623, CVE-2018-18624, CVE-2018-18625: Fixed multiple cross\n site scripting vulnerabilities in the dashboard. (bsc#1172450)\n- CVE-2021-27358: Fixed a denial of service via remote API call. (bsc#1183803)\n- CVE-2019-15043: Fixed a denial of service by an unauthenticated user\n in the snapshot HTTP API (bsc#1148383)\n- CVE-2020-13379: Fixed an information leak to unauthenticated users. (bsc#1172409)\n- CVE-2020-12052: Fixed a cross site scripting vulnerability with the annotation\n popup (bsc#1170657)\n- CVE-2018-19039: Fixed an issue where a privileged user could\n exfiltrate files (bsc#1115960)\n- CVE-2020-11110: Fixed a stored cross site scripting vulnerability. (bsc#1174583)\n- CVE-2020-24303: Fixed a cross site scripting vulnerability in a query alias for\n ElasticSearch datasources (bsc#1178243)\n\nkibana:\n- CVE-2017-11499: Fixed a vulnerability in nodejs, related to the HashTable\n implementation, which could cause a denial of service. (bsc#1044849)\n- CVE-2017-11481: Fixed a cross site scripting vulnerability via via URL fields.\n (bsc#1044849)\n- CVE-2020-10743: Fixed a clickjacking issue because X-Frame-Option was not used\n by default. (bsc#1171909)\n\npython-Django:\n- CVE-2021-23336: Fixed a web cache poisoning via django.utils.http.limited_parse_qsl().\n (bsc#1182433)\n- CVE-2021-28658: Fixed a directory traversal via uploaded files. (bsc#1184148)\n- CVE-2021-31542: Fixed a directory traversal via uploaded files with suitably crafted\n file names. (bsc#1185623)\n- CVE-2021-33203: Fixed potential path-traversal via admindocs\u0027 TemplateDetailView.\n (bsc#1186608)\n- CVE-2021-33571: Tighten validator checks to not allow leading zeros in IPv4 addresses,\n which potentially leads to further attacks. (bsc#1186611)\n\npython-py:\n- CVE-2020-29651: Fixed a denial of service via regular expressions. (bsc#1179805)\n\npython-pysaml2:\n- CVE-2021-21238: Fixed improper verification of cryptographic signatures for signed\n SAML documents. (bsc#1181277)\n- CVE-2021-21239: Fixed improper verification of cryptographic signatures when using\n CryptoBackendXmlSec1(). (bsc#1181278)\n\nrubygem-activerecord-session_store:\n- CVE-2019-25025: Fixed a timing attacks targeting the session id which could allow\n an attack to hijack sessions. (bsc#1183174)\n\n\nNon-security changes included in this update:\n\nChanges in ardana-neutron:\n- Update to version 9.0+git.1615223676.777f0b3:\n * Allow users to stop monitoring rootwrap daemon (bsc#1182317)\n\nChanges in ardana-swift:\n- Update to version 9.0+git.1618235096.90974ed:\n * Run swiftlm-scan in the UTC timezone (bsc#1181690)\n\nChanges in cassandra:\n- update to 3.11.10 (bsc#1181689, CVE-2020-17516) \n * Fix digest computation for queries with fetched but non queried columns (CASSANDRA-15962)\n * Reduce amount of allocations during batch statement execution (CASSANDRA-16201)\n * Update jflex-1.6.0.jar to match upstream (CASSANDRA-16393)\n * Fix DecimalDeserializer#toString OOM (CASSANDRA-14925)\n * Rate limit validation compactions using compaction_throughput_mb_per_sec (CASSANDRA-16161)\n * SASI\u0027s `max_compaction_flush_memory_in_mb` settings over 100GB revert to default of 1GB (CASSANDRA-16071)\n * Prevent unbounded number of pending flushing tasks (CASSANDRA-16261)\n * Improve empty hint file handling during startup (CASSANDRA-16162)\n * Allow empty string in collections with COPY FROM in cqlsh (CASSANDRA-16372)\n * Fix skipping on pre-3.0 created compact storage sstables due to missing primary key liveness (CASSANDRA-16226)\n * Extend the exclusion of replica filtering protection to other indices instead of just SASI (CASSANDRA-16311)\n * Synchronize transaction logs for JBOD (CASSANDRA-16225)\n * Fix the counting of cells per partition (CASSANDRA-16259)\n * Fix serial read/non-applying CAS linearizability (CASSANDRA-12126)\n * Avoid potential NPE in JVMStabilityInspector (CASSANDRA-16294)\n * Improved check of num_tokens against the length of initial_token (CASSANDRA-14477)\n * Fix a race condition on ColumnFamilyStore and TableMetrics (CASSANDRA-16228)\n * Remove the SEPExecutor blocking behavior (CASSANDRA-16186)\n * Fix invalid cell value skipping when reading from disk (CASSANDRA-16223)\n * Prevent invoking enable/disable gossip when not in NORMAL (CASSANDRA-16146)\n * Wait for schema agreement when bootstrapping (CASSANDRA-15158)\n * Fix the histogram merge of the table metrics (CASSANDRA-16259)\n * Synchronize Keyspace instance store/clear (CASSANDRA-16210)\n * Fix ColumnFilter to avoid querying cells of unselected complex columns (CASSANDRA-15977)\n * Fix memory leak in CompressedChunkReader (CASSANDRA-15880)\n * Don\u0027t attempt value skipping with mixed version cluster (CASSANDRA-15833)\n * Avoid failing compactions with very large partitions (CASSANDRA-15164)\n * Make sure LCS handles duplicate sstable added/removed notifications correctly (CASSANDRA-14103)\n * Fix OOM when terminating repair session (CASSANDRA-15902)\n * Avoid marking shutting down nodes as up after receiving gossip shutdown message (CASSANDRA-16094)\n * Check SSTables for latest version before dropping compact storage (CASSANDRA-16063)\n * Handle unexpected columns due to schema races (CASSANDRA-15899)\n * Add flag to ignore unreplicated keyspaces during repair (CASSANDRA-15160)\n * Package tools/bin scripts as executable (CASSANDRA-16151)\n * Fixed a NullPointerException when calling nodetool enablethrift (CASSANDRA-16127)\n * Correctly interpret SASI\u0027s `max_compaction_flush_memory_in_mb` setting in megabytes not bytes (CASSANDRA-16071)\n * Fix short read protection for GROUP BY queries (CASSANDRA-15459)\n * Frozen RawTuple is not annotated with frozen in the toString method (CASSANDRA-15857)\nMerged from 3.0:\n * Use IF NOT EXISTS for index and UDT create statements in snapshot schema files (CASSANDRA-13935)\n * Fix gossip shutdown order (CASSANDRA-15816)\n * Remove broken \u0027defrag-on-read\u0027 optimization (CASSANDRA-15432)\n * Check for endpoint collision with hibernating nodes (CASSANDRA-14599)\n * Operational improvements and hardening for replica filtering protection (CASSANDRA-15907)\n * stop_paranoid disk failure policy is ignored on CorruptSSTableException after node is up (CASSANDRA-15191)\n * Forbid altering UDTs used in partition keys (CASSANDRA-15933)\n * Fix empty/null json string representation (CASSANDRA-15896)\n * 3.x fails to start if commit log has range tombstones from a column which is also deleted (CASSANDRA-15970)\n * Handle difference in timestamp precision between java8 and java11 in LogFIle.java (CASSANDRA-16050)\nMerged from 2.2:\n * Fix CQL parsing of collections when the column type is reversed (CASSANDRA-15814)\n * Only allow strings to be passed to JMX authentication (CASSANDRA-16077)\n * Fix cqlsh output when fetching all rows in batch mode (CASSANDRA-15905)\n * Upgrade Jackson to 2.9.10 (CASSANDRA-15867)\n * Fix CQL formatting of read command restrictions for slow query log (CASSANDRA-15503)\n * Allow sstableloader to use SSL on the native port (CASSANDRA-14904)\n * Backport CASSANDRA-12189: escape string literals (CASSANDRA-15948)\n * Avoid hinted handoff per-host throttle being arounded to 0 in large cluster (CASSANDRA-15859)\n * Avoid emitting empty range tombstones from RangeTombstoneList (CASSANDRA-15924)\n * Avoid thread starvation, and improve compare-and-swap performance, in the slab allocators (CASSANDRA-15922)\n * Add token to tombstone warning and error messages (CASSANDRA-15890)\n * Fixed range read concurrency factor computation and capped as 10 times tpc cores (CASSANDRA-15752)\n * Catch exception on bootstrap resume and init native transport (CASSANDRA-15863)\n * Fix replica-side filtering returning stale data with CL \u003e ONE (CASSANDRA-8272, CASSANDRA-8273)\n * Fix duplicated row on 2.x upgrades when multi-rows range tombstones interact with collection ones (CASSANDRA-15805)\n * Rely on snapshotted session infos on StreamResultFuture.maybeComplete to avoid race conditions (CASSANDRA-15667)\n * EmptyType doesn\u0027t override writeValue so could attempt to write bytes when expected not to (CASSANDRA-15790)\n * Fix index queries on partition key columns when some partitions contains only static data (CASSANDRA-13666)\n * Avoid creating duplicate rows during major upgrades (CASSANDRA-15789)\n * liveDiskSpaceUsed and totalDiskSpaceUsed get corrupted if IndexSummaryRedistribution gets interrupted (CASSANDRA-15674)\n * Fix Debian init start/stop (CASSANDRA-15770)\n * Fix infinite loop on index query paging in tables with clustering (CASSANDRA-14242)\n * Fix chunk index overflow due to large sstable with small chunk length (CASSANDRA-15595)\n * Allow selecting static column only when querying static index (CASSANDRA-14242)\n * cqlsh return non-zero status when STDIN CQL fails (CASSANDRA-15623)\n * Don\u0027t skip sstables in slice queries based only on local min/max/deletion timestamp (CASSANDRA-15690)\n * Memtable memory allocations may deadlock (CASSANDRA-15367)\n * Run evictFromMembership in GossipStage (CASSANDRA-15592)\n * Fix nomenclature of allow and deny lists (CASSANDRA-15862)\n * Remove generated files from source artifact (CASSANDRA-15849)\n * Remove duplicated tools binaries from tarballs (CASSANDRA-15768)\n * Duplicate results with DISTINCT queries in mixed mode (CASSANDRA-15501)\n * Disable JMX rebinding (CASSANDRA-15653)\n * Fix writing of snapshot manifest when the table has table-backed secondary indexes (CASSANDRA-10968)\n * Fix parse error in cqlsh COPY FROM and formatting for map of blobs (CASSANDRA-15679)\n * Fix Commit log replays when static column clustering keys are collections (CASSANDRA-14365)\n * Fix Red Hat init script on newer systemd versions (CASSANDRA-15273)\n * Allow EXTRA_CLASSPATH to work on tar/source installations (CASSANDRA-15567)\n * Fix bad UDT sstable metadata serialization headers written by C* 3.0 on upgrade and in sstablescrub (CASSANDRA-15035)\n * Fix nodetool compactionstats showing extra pending task for TWCS - patch implemented (CASSANDRA-15409)\n * Fix SELECT JSON formatting for the \u0027duration\u0027 type (CASSANDRA-15075)\n * Fix LegacyLayout to have same behavior as 2.x when handling unknown column names (CASSANDRA-15081)\n * Update nodetool help stop output (CASSANDRA-15401)\n * Run in-jvm upgrade dtests in circleci (CASSANDRA-15506)\n * Include updates to static column in mutation size calculations (CASSANDRA-15293)\n * Fix point-in-time recoevery ignoring timestamp of updates to static columns (CASSANDRA-15292)\n * GC logs are also put under $CASSANDRA_LOG_DIR (CASSANDRA-14306)\n * Fix sstabledump\u0027s position key value when partitions have multiple rows (CASSANDRA-14721)\n * Avoid over-scanning data directories in LogFile.verify() (CASSANDRA-15364)\n * Bump generations and document changes to system_distributed and system_traces in 3.0, 3.11\n (CASSANDRA-15441)\n * Fix system_traces creation timestamp; optimise system keyspace upgrades (CASSANDRA-15398)\n * Fix various data directory prefix matching issues (CASSANDRA-13974)\n * Minimize clustering values in metadata collector (CASSANDRA-15400)\n * Avoid over-trimming of results in mixed mode clusters (CASSANDRA-15405)\n * validate value sizes in LegacyLayout (CASSANDRA-15373)\n * Ensure that tracing doesn\u0027t break connections in 3.x/4.0 mixed mode by default (CASSANDRA-15385)\n * Make sure index summary redistribution does not start when compactions are paused (CASSANDRA-15265)\n * Ensure legacy rows have primary key livenessinfo when they contain illegal cells (CASSANDRA-15365)\n * Fix race condition when setting bootstrap flags (CASSANDRA-14878)\n * Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)\n * Fix SELECT JSON output for empty blobs (CASSANDRA-15435)\n * In-JVM DTest: Set correct internode message version for upgrade test (CASSANDRA-15371)\n * In-JVM DTest: Support NodeTool in dtest (CASSANDRA-15429)\n * Fix NativeLibrary.tryOpenDirectory callers for Windows (CASSANDRA-15426)\n * Fix SASI non-literal string comparisons (range operators) (CASSANDRA-15169)\n * Make sure user defined compaction transactions are always closed (CASSANDRA-15123)\n * Fix cassandra-env.sh to use $CASSANDRA_CONF to find cassandra-jaas.config (CASSANDRA-14305)\n * Fixed nodetool cfstats printing index name twice (CASSANDRA-14903)\n * Add flag to disable SASI indexes, and warnings on creation (CASSANDRA-14866)\n * Add ability to cap max negotiable protocol version (CASSANDRA-15193)\n * Gossip tokens on startup if available (CASSANDRA-15335)\n * Fix resource leak in CompressedSequentialWriter (CASSANDRA-15340)\n * Fix bad merge that reverted CASSANDRA-14993 (CASSANDRA-15289)\n * Fix LegacyLayout RangeTombstoneList IndexOutOfBoundsException when upgrading and RangeTombstone bounds are asymmetric (CASSANDRA-15172)\n * Fix NPE when using allocate_tokens_for_keyspace on new DC/rack (CASSANDRA-14952)\n * Filter sstables earlier when running cleanup (CASSANDRA-15100)\n * Use mean row count instead of mean column count for index selectivity calculation (CASSANDRA-15259)\n * Avoid updating unchanged gossip states (CASSANDRA-15097)\n * Prevent recreation of previously dropped columns with a different kind (CASSANDRA-14948)\n * Prevent client requests from blocking on executor task queue (CASSANDRA-15013)\n * Toughen up column drop/recreate type validations (CASSANDRA-15204)\n * LegacyLayout should handle paging states that cross a collection column (CASSANDRA-15201)\n * Prevent RuntimeException when username or password is empty/null (CASSANDRA-15198)\n * Multiget thrift query returns null records after digest mismatch (CASSANDRA-14812)\n * Skipping illegal legacy cells can break reverse iteration of indexed partitions (CASSANDRA-15178)\n * Handle paging states serialized with a different version than the session\u0027s (CASSANDRA-15176)\n * Throw IOE instead of asserting on unsupporter peer versions (CASSANDRA-15066)\n * Update token metadata when handling MOVING/REMOVING_TOKEN events (CASSANDRA-15120)\n * Add ability to customize cassandra log directory using $CASSANDRA_LOG_DIR (CASSANDRA-15090)\n * Skip cells with illegal column names when reading legacy sstables (CASSANDRA-15086)\n * Fix assorted gossip races and add related runtime checks (CASSANDRA-15059)\n * Fix mixed mode partition range scans with limit (CASSANDRA-15072)\n * cassandra-stress works with frozen collections: list and set (CASSANDRA-14907)\n * Fix handling FS errors on writing and reading flat files - LogTransaction and hints (CASSANDRA-15053)\n * Avoid double closing the iterator to avoid overcounting the number of requests (CASSANDRA-15058)\n * Improve `nodetool status -r` speed (CASSANDRA-14847)\n * Improve merkle tree size and time on heap (CASSANDRA-14096)\n * Add missing commands to nodetool_completion (CASSANDRA-14916)\n * Anti-compaction temporarily corrupts sstable state for readers (CASSANDRA-15004)\n * Catch non-IOException in FileUtils.close to make sure that all resources are closed (CASSANDRA-15225)\n * Handle exceptions during authentication/authorization (CASSANDRA-15041)\n * Support cross version messaging in in-jvm upgrade dtests (CASSANDRA-15078)\n * Fix index summary redistribution cancellation (CASSANDRA-15045)\n * Fixing invalid CQL in security documentation (CASSANDRA-15020)\n * Allow instance class loaders to be garbage collected for inJVM dtest (CASSANDRA-15170)\n * Add support for network topology and query tracing for inJVM dtest (CASSANDRA-15319)\n * Correct sstable sorting for garbagecollect and levelled compaction (CASSANDRA-14870)\n * Severe concurrency issues in STCS,DTCS,TWCS,TMD.Topology,TypeParser\n * Add a script to make running the cqlsh tests in cassandra repo easier (CASSANDRA-14951)\n * If SizeEstimatesRecorder misses a \u0027onDropTable\u0027 notification, the size_estimates table will never be cleared for that table. (CASSANDRA-14905)\n * Counters fail to increment in 2.1/2.2 to 3.X mixed version clusters (CASSANDRA-14958)\n * Streaming needs to synchronise access to LifecycleTransaction (CASSANDRA-14554)\n * Fix cassandra-stress write hang with default options (CASSANDRA-14616)\n * Differentiate between slices and RTs when decoding legacy bounds (CASSANDRA-14919)\n * Netty epoll IOExceptions caused by unclean client disconnects being logged at INFO (CASSANDRA-14909)\n * Unfiltered.isEmpty conflicts with Row extends AbstractCollection.isEmpty (CASSANDRA-14588)\n * RangeTombstoneList doesn\u0027t properly clean up mergeable or superseded rts in some cases (CASSANDRA-14894)\n * Fix handling of collection tombstones for dropped columns from legacy sstables (CASSANDRA-14912)\n * Throw exception if Columns serialized subset encode more columns than possible (CASSANDRA-14591)\n * Drop/add column name with different Kind can result in corruption (CASSANDRA-14843)\n * Fix missing rows when reading 2.1 SSTables with static columns in 3.0 (CASSANDRA-14873)\n * Move TWCS message \u0027No compaction necessary for bucket size\u0027 to Trace level (CASSANDRA-14884)\n * Sstable min/max metadata can cause data loss (CASSANDRA-14861)\n * Dropped columns can cause reverse sstable iteration to return prematurely (CASSANDRA-14838)\n * Legacy sstables with multi block range tombstones create invalid bound sequences (CASSANDRA-14823)\n * Expand range tombstone validation checks to multiple interim request stages (CASSANDRA-14824)\n * Reverse order reads can return incomplete results (CASSANDRA-14803)\n * Avoid calling iter.next() in a loop when notifying indexers about range tombstones (CASSANDRA-14794)\n * Fix purging semi-expired RT boundaries in reversed iterators (CASSANDRA-14672)\n * DESC order reads can fail to return the last Unfiltered in the partition (CASSANDRA-14766)\n * Fix corrupted collection deletions for dropped columns in 3.0 \u003c-\u003e 2.{1,2} messages (CASSANDRA-14568)\n * Fix corrupted static collection deletions in 3.0 \u003c-\u003e 2.{1,2} messages (CASSANDRA-14568)\n * Handle failures in parallelAllSSTableOperation (cleanup/upgradesstables/etc) (CASSANDRA-14657)\n * Improve TokenMetaData cache populating performance avoid long locking (CASSANDRA-14660)\n * Backport: Flush netty client messages immediately (not by default) (CASSANDRA-13651)\n * Fix static column order for SELECT * wildcard queries (CASSANDRA-14638)\n * sstableloader should use discovered broadcast address to connect intra-cluster (CASSANDRA-14522)\n * Fix reading columns with non-UTF names from schema (CASSANDRA-14468)\n * Don\u0027t enable client transports when bootstrap is pending (CASSANDRA-14525)\n * MigrationManager attempts to pull schema from different major version nodes (CASSANDRA-14928)\n * Fix incorrect cqlsh results when selecting same columns multiple times (CASSANDRA-13262)\n * Returns null instead of NaN or Infinity in JSON strings (CASSANDRA-14377)\n * Paged Range Slice queries with DISTINCT can drop rows from results (CASSANDRA-14956)\n\nChanges in crowbar-openstack:\n- Update to version 6.0+git.1616146717.a89ae0f4e:\n * monasca: restart Kibana on update (bsc#1044849)\n\nChanges in grafana\n- Add CVE-2021-27358.patch (bsc#1183803, CVE-2021-27358)\n * Prevent unauthenticated remote attackers from causing a DoS through the\n snapshots API.\n\nChanges in kibana:\n- Ensure /etc/sysconfig/kibana is present\n\n- Update to Kibana 4.6.6 (bsc#1044849, CVE-2017-11499, ESA-2017-14, ESA-2017-16)\n * [4.6] ignore forked code for babel transpile build phase (#13483)\n * Allow more than match queries in custom filters (#8614) (#10857)\n * [state] don\u0027t make extra $location.replace() calls (#9954)\n * [optimizer] move to querystring-browser package for up-to-date api\n * [state/unhashUrl] use encode-uri-query to generate cleanly encoded urls\n * server: refactor log_interceptor to be more DRY (#9617)\n * server: downgrade ECANCELED logs to debug (#9616)\n * server: do not treat logged warnings as errors (#8746) (#9610)\n * [server/logger] downgrade EPIPE errors to debug level (#9023)\n * Add basepath when redirecting from a trailling slash (#9035)\n * [es/kibanaIndex] use unmapped_type rather than ignore_unmapped (#8968)\n * [server/shortUrl] validate urls before shortening them\n- Add CVE-2017-11481.patch (bsc#1044849, CVE-2017-11481)\n * This fixes an XSS vulnerability in URL fields\n- Remove %dir declaration from /opt/kibana/optimize to ensure\n no files owned by root end up in there\n- Exclude /opt/kibana/optimize from %fdupes\n- Restart service on upgrade\n- Do not copy LICENSE.txt and README.txt to /opt/kibana\n- Fix rpmlint warnings/errors\n- Switch to explicit patch application\n- Fix source URL\n- Fix logic for systemd/systemv detection\n\n- Add 0001-Configurable-custom-response-headers-for-server.patch\n (bsc#1171909, CVE-2020-10743)\n\n- Added kibana.yml symlink (bsc#1048688, FATE#323204)\nChanges in openstack-dashboard:\n- Update to version horizon-14.1.1.dev11:\n * Consume tempest-horizon from PyPI release\n\nChanges in openstack-ironic:\n- Update to version ironic-11.1.5.dev17:\n * Remove lower-constraints job\n\nChanges in openstack-ironic:\n- Update to version ironic-11.1.5.dev17:\n * Remove lower-constraints job\n\nChanges in openstack-neutron:\n- Update to version neutron-13.0.8.dev164:\n * Schedule networks to new segments if needed\n\n- Update to version neutron-13.0.8.dev162:\n * Fix invalid JSON generated by quota details\n\n- Update to version neutron-13.0.8.dev160:\n * Fix deletion of rfp interfaces when router is re-enabled\n\n- Update to version neutron-13.0.8.dev159:\n * [OVS FW] Allow egress ICMPv6 only for know addresses\n * [OVS FW] Clean conntrack entries with mark == CT\\_MARK\\_INVALID\n\n- Update to version neutron-13.0.8.dev155:\n * Fix removal of dvr-src mac flows when non-gateway port on router is deleted\n\n- Update to version neutron-13.0.8.dev153:\n * Add some wait time between stopping and starting again ovsdb monitor\n * Workaround for TCP checksum issue with ovs-dpdk and veth pair\n\n- Update to version neutron-13.0.8.dev149:\n * Fix wrong packet\\_type set for IPv6 GRE tunnels in OVS\n\n- Update to version neutron-13.0.8.dev148:\n * Fix losses of ovs flows when ovs is restarted\n\nChanges in openstack-neutron:\n- Update to version neutron-13.0.8.dev164:\n * Schedule networks to new segments if needed\n\n- Update to version neutron-13.0.8.dev162:\n * Fix invalid JSON generated by quota details\n\n- Update to version neutron-13.0.8.dev160:\n * Fix deletion of rfp interfaces when router is re-enabled\n\n- Update to version neutron-13.0.8.dev159:\n * [OVS FW] Allow egress ICMPv6 only for know addresses\n * [OVS FW] Clean conntrack entries with mark == CT\\_MARK\\_INVALID\n\n- Update to version neutron-13.0.8.dev155:\n * Fix removal of dvr-src mac flows when non-gateway port on router is deleted\n\n- Update to version neutron-13.0.8.dev153:\n * Add some wait time between stopping and starting again ovsdb monitor\n * Workaround for TCP checksum issue with ovs-dpdk and veth pair\n\n- Update to version neutron-13.0.8.dev149:\n * Fix wrong packet\\_type set for IPv6 GRE tunnels in OVS\n\n- Update to version neutron-13.0.8.dev148:\n * Fix losses of ovs flows when ovs is restarted\n\nChanges in openstack-neutron-gbp:\n- Update to version group-based-policy-12.0.1.dev29:\n * gbp-validate: Tenant and resource level scoping\n 2014.2.0rc1\n\n- Update to version group-based-policy-12.0.1.dev27:\n * Import data\\_utils from the new location\n\n- Update to version group-based-policy-12.0.1.dev26:\n * Add SNAT port\u0027s Mac Address to the host\\_snat\\_ips dictionary\n\n- Update to version group-based-policy-12.0.1.dev25:\n * Add support for victoria\n 2014.2.rc1\n\n- Update to version group-based-policy-12.0.1.dev24:\n * Fix deletion of SVI networks\n\n- Update to version group-based-policy-12.0.1.dev23:\n * Allow per-port qos configuration on dhcp port\n 2014.2rc1\n\n- Update to version group-based-policy-12.0.1.dev22:\n * Add connectivity parameter to driver\n * [AIM] Fix ERSPAN extension\n 2014.2.rc1\n\n- Update to version group-based-policy-12.0.1.dev19:\n * Fix exception with cleanup\n 2014.2.0rc1\n\n- Update to version group-based-policy-12.0.1.dev18:\n * Add workaround to get\\_subnets\n\nChanges in openstack-nova:\n- Update to version nova-18.3.1.dev82:\n * [stable-only] gate: Pin CEPH\\_RELEASE to nautilus in LM hook\n * Change default num\\_retries for glance to 3\n\nChanges in openstack-nova:\n- Update to version nova-18.3.1.dev82:\n * [stable-only] gate: Pin CEPH\\_RELEASE to nautilus in LM hook\n * Change default num\\_retries for glance to 3\n\nChanges in python-Django1:\n- Add CVE-2021-33203.patch (bsc#1186608, CVE-2021-33203)\n * Fixed potential path-traversal via admindocs\u0027 TemplateDetailView.\n- Add CVE-2021-33571.patch (bsc#1186611, CVE-2021-33571)\n * Prevented leading zeros in IPv4 addresses.\n\n- Add CVE-2021-31542.patch (bsc#1185623, CVE-2021-31542)\n * Fixed CVE-2021-31542 -- Tightened path and file name sanitation in file\n uploads.\n\n- Add CVE-2021-28658.patch (bsc#1184148, CVE-2021-28658)\n * Fixed potential directory-traversal via uploaded files\n\n- Add CVE-2021-23336.patch (bsc#1182433, CVE-2021-23336)\n * Fixed web cache poisoning via django.utils.http.limited_parse_qsl()\n\n\nChanges in python-py:\n- Add CVE-2020-29651.patch ((bsc#1179805, CVE-2020-29651)\n * svnwc: fix regular expression vulnerable to DoS in blame\n functionality\n\nChanges in python-pysaml2:\n- Fix patches (SOC-11453)\n * 0005-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch\n - rename saml2.xml to saml2.samlxml to avoid overriding\n the xml module in the system module path\n - add missing __init__.py files\n - add missing saml2/data package to setup.py\n * 0007-Make-previous-commits-python2-compatible.patch so as not to\n - Adjust to saml2.xml to saml2.samlxml changes\n - Fix a few more syntax errors and Python2-isms.\n\n- Fix CVE-2021-21238, bsc#1181277 with\n 0002-Strengthen-XSW-tests.patch ,\n 0003-Fix-the-parser-to-not-break-on-ePTID-AttributeValues.patch ,\n 0004-Add-xsd-schemas.patch ,\n 0005-Fix-CVE-2021-21238-SAML-XML-Signature-wrapping.patch .\n This adds a dependency on python-xmlschema, which depends on\n python-elementpath, thus both need to be added for this to work.\n The used python-xmlschema needs to support the sandbox argument\n which was added in 1.2.0 and refined in 1.2.1, but that version\n doesn\u0027t support python2, so a patched version that does both is\n needed.\n Add 0007-Make-previous-commits-python2-compatible.patch to\n not add a dependency on reportlib_resources and make other\n changes python2 compatible.\n. Fix CVE-2021-21239, bsc#1181278 with\n 0006-Fix-CVE-2021-21239-Restrict-the-key-data-that-xmlsec.patch\n\nChanges in python-xmlschema:\n\n- Add 3 patches to backport sandbox argument, which is needed by a security fix\n in python-pysaml2 and one patch to make backport python2 compatible.\n- Upstream url changed\n- Add rpmlintrc to make it work on Leap 42.3\n- Update to 1.0.18:\n * Fix for *ModelVisitor.iter_unordered_content()*\n * Fixed default converter, AbderaConverter and JsonMLConverter for xs:anyType decode\n * Fixed validation tests with all converters\n * Added UnorderedConverter to validation tests\n- Update to 1.0.17:\n * Enhancement of validation-only speed (~15%)\n * Added *is_valid()* and *iter_errors()* to module API\n- Update to 1.0.16:\n * Improved XMLResource class for working with compressed files\n * Fix for validation with XSD wildcards and \u0027lax\u0027 process content\n * Fix ambiguous items validation for xs:choice and xs:sequence models\n\n- Handle UnicodeDecodeErrors during build process\n\n- Update to 1.0.15:\n * Improved XPath 2.0 bindings\n * Added logging for schema initialization and building (handled with argument loglevel)\n * Update encoding of collapsed contents with a new model based reordering method\n * Removed XLink namespace from meta-schema (loaded from a fallback location like XHTML)\n * Fixed half of failed W3C instance tests (remain 255 over 15344 tests)\n\n- Initial commit, needed by pytest 5.1.2\nChanges in python-elementpath:\n\n- Update to 1.3.1:\n * Improved schema proxy\n * Improved XSD type matching using paths\n * Cached parent path for XPathContext (only Python 3)\n * Improve typed selection with TypedAttribute and TypedElement named-tuples\n * Add iter_results to XPathContext\n * Remove XMLSchemaProxy from package\n * Fix descendant shortcut operator \u0027//\u0027\n * Fix text() function\n * Fix typed select of \u0027(name)\u0027 token\n * Fix 24-hour time for DateTime\n\n- Skip test_hashing to fix 32bit builds\n\n- Initial commit needed by python-xmlschema\nChanges in rubygem-activerecord-session_store:\n- added CVE-2019-25025.patch (CVE-2019-25025, bsc#1183174)\n * This requires CVE-2019-16782.patch to be included in\n rubygem-actionpack-4_2 to work correctly.\n\nChanges in venv-openstack-keystone\n- Add python-xmlschema and python-elementpath for new python-pysaml2 version.\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2021-1962,SUSE-OpenStack-Cloud-9-2021-1962,SUSE-OpenStack-Cloud-Crowbar-9-2021-1962",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2021_1962-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2021:1962-1",
"url": "https://www.suse.com/support/update/announcement/2021/suse-su-20211962-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2021:1962-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2021-June/009001.html"
},
{
"category": "self",
"summary": "SUSE Bug 1044849",
"url": "https://bugzilla.suse.com/1044849"
},
{
"category": "self",
"summary": "SUSE Bug 1048688",
"url": "https://bugzilla.suse.com/1048688"
},
{
"category": "self",
"summary": "SUSE Bug 1115960",
"url": "https://bugzilla.suse.com/1115960"
},
{
"category": "self",
"summary": "SUSE Bug 1148383",
"url": "https://bugzilla.suse.com/1148383"
},
{
"category": "self",
"summary": "SUSE Bug 1170657",
"url": "https://bugzilla.suse.com/1170657"
},
{
"category": "self",
"summary": "SUSE Bug 1171909",
"url": "https://bugzilla.suse.com/1171909"
},
{
"category": "self",
"summary": "SUSE Bug 1172409",
"url": "https://bugzilla.suse.com/1172409"
},
{
"category": "self",
"summary": "SUSE Bug 1172450",
"url": "https://bugzilla.suse.com/1172450"
},
{
"category": "self",
"summary": "SUSE Bug 1174583",
"url": "https://bugzilla.suse.com/1174583"
},
{
"category": "self",
"summary": "SUSE Bug 1178243",
"url": "https://bugzilla.suse.com/1178243"
},
{
"category": "self",
"summary": "SUSE Bug 1179805",
"url": "https://bugzilla.suse.com/1179805"
},
{
"category": "self",
"summary": "SUSE Bug 1181277",
"url": "https://bugzilla.suse.com/1181277"
},
{
"category": "self",
"summary": "SUSE Bug 1181278",
"url": "https://bugzilla.suse.com/1181278"
},
{
"category": "self",
"summary": "SUSE Bug 1181689",
"url": "https://bugzilla.suse.com/1181689"
},
{
"category": "self",
"summary": "SUSE Bug 1181690",
"url": "https://bugzilla.suse.com/1181690"
},
{
"category": "self",
"summary": "SUSE Bug 1182317",
"url": "https://bugzilla.suse.com/1182317"
},
{
"category": "self",
"summary": "SUSE Bug 1182433",
"url": "https://bugzilla.suse.com/1182433"
},
{
"category": "self",
"summary": "SUSE Bug 1183174",
"url": "https://bugzilla.suse.com/1183174"
},
{
"category": "self",
"summary": "SUSE Bug 1183803",
"url": "https://bugzilla.suse.com/1183803"
},
{
"category": "self",
"summary": "SUSE Bug 1184148",
"url": "https://bugzilla.suse.com/1184148"
},
{
"category": "self",
"summary": "SUSE Bug 1185623",
"url": "https://bugzilla.suse.com/1185623"
},
{
"category": "self",
"summary": "SUSE Bug 1186608",
"url": "https://bugzilla.suse.com/1186608"
},
{
"category": "self",
"summary": "SUSE Bug 1186611",
"url": "https://bugzilla.suse.com/1186611"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11481 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11481/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-11499 page",
"url": "https://www.suse.com/security/cve/CVE-2017-11499/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18623 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18623/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18624 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18624/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-18625 page",
"url": "https://www.suse.com/security/cve/CVE-2018-18625/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-19039 page",
"url": "https://www.suse.com/security/cve/CVE-2018-19039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-15043 page",
"url": "https://www.suse.com/security/cve/CVE-2019-15043/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-25025 page",
"url": "https://www.suse.com/security/cve/CVE-2019-25025/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10743 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10743/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-11110 page",
"url": "https://www.suse.com/security/cve/CVE-2020-11110/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-12052 page",
"url": "https://www.suse.com/security/cve/CVE-2020-12052/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-13379 page",
"url": "https://www.suse.com/security/cve/CVE-2020-13379/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-17516 page",
"url": "https://www.suse.com/security/cve/CVE-2020-17516/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-24303 page",
"url": "https://www.suse.com/security/cve/CVE-2020-24303/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-29651 page",
"url": "https://www.suse.com/security/cve/CVE-2020-29651/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21238 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21238/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-21239 page",
"url": "https://www.suse.com/security/cve/CVE-2021-21239/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23336 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23336/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-27358 page",
"url": "https://www.suse.com/security/cve/CVE-2021-27358/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-28658 page",
"url": "https://www.suse.com/security/cve/CVE-2021-28658/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-31542 page",
"url": "https://www.suse.com/security/cve/CVE-2021-31542/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-33203 page",
"url": "https://www.suse.com/security/cve/CVE-2021-33203/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-33571 page",
"url": "https://www.suse.com/security/cve/CVE-2021-33571/"
}
],
"title": "Security update for ardana-neutron, ardana-swift, cassandra, crowbar-openstack, grafana, kibana, openstack-dashboard, openstack-ironic, openstack-neutron, openstack-neutron-gbp, openstack-nova, python-Django1, python-py, python-pysaml2, python-xmlschema, rubygem-activerecord-session_store, venv-openstack-keystone",
"tracking": {
"current_release_date": "2021-06-11T13:13:53Z",
"generator": {
"date": "2021-06-11T13:13:53Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2021:1962-1",
"initial_release_date": "2021-06-11T13:13:53Z",
"revision_history": [
{
"date": "2021-06-11T13:13:53Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "cassandra-3.11.10-3.3.3.aarch64",
"product": {
"name": "cassandra-3.11.10-3.3.3.aarch64",
"product_id": "cassandra-3.11.10-3.3.3.aarch64"
}
},
{
"category": "product_version",
"name": "cassandra-javadoc-3.11.10-3.3.3.aarch64",
"product": {
"name": "cassandra-javadoc-3.11.10-3.3.3.aarch64",
"product_id": "cassandra-javadoc-3.11.10-3.3.3.aarch64"
}
},
{
"category": "product_version",
"name": "cassandra-tools-3.11.10-3.3.3.aarch64",
"product": {
"name": "cassandra-tools-3.11.10-3.3.3.aarch64",
"product_id": "cassandra-tools-3.11.10-3.3.3.aarch64"
}
},
{
"category": "product_version",
"name": "grafana-6.7.4-3.23.2.aarch64",
"product": {
"name": "grafana-6.7.4-3.23.2.aarch64",
"product_id": "grafana-6.7.4-3.23.2.aarch64"
}
},
{
"category": "product_version",
"name": "kibana-4.6.6-4.9.2.aarch64",
"product": {
"name": "kibana-4.6.6-4.9.2.aarch64",
"product_id": "kibana-4.6.6-4.9.2.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.aarch64",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.aarch64",
"product_id": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.aarch64",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.aarch64",
"product_id": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"product": {
"name": "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"product_id": "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch"
}
},
{
"category": "product_version",
"name": "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"product": {
"name": "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"product_id": "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch"
}
},
{
"category": "product_version",
"name": "cassandra-kit-3.11.10-3.3.2.noarch",
"product": {
"name": "cassandra-kit-3.11.10-3.3.2.noarch",
"product_id": "cassandra-kit-3.11.10-3.3.2.noarch"
}
},
{
"category": "product_version",
"name": "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"product": {
"name": "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"product_id": "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"product": {
"name": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"product_id": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-dashboard-test-14.1.1~dev11-3.24.6.noarch",
"product": {
"name": "openstack-dashboard-test-14.1.1~dev11-3.24.6.noarch",
"product_id": "openstack-dashboard-test-14.1.1~dev11-3.24.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"product": {
"name": "openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"product_id": "openstack-ironic-11.1.5~dev17-3.25.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"product": {
"name": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"product_id": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"product": {
"name": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"product_id": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-ironic-test-11.1.5~dev17-3.25.5.noarch",
"product": {
"name": "openstack-ironic-test-11.1.5~dev17-3.25.5.noarch",
"product_id": "openstack-ironic-test-11.1.5~dev17-3.25.5.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"product": {
"name": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"product_id": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-gbp-test-12.0.1~dev29-3.25.3.noarch",
"product": {
"name": "openstack-neutron-gbp-test-12.0.1~dev29-3.25.3.noarch",
"product_id": "openstack-neutron-gbp-test-12.0.1~dev29-3.25.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-test-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "openstack-neutron-test-13.0.8~dev164-3.37.4.noarch",
"product_id": "openstack-neutron-test-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-consoleauth-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-consoleauth-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-consoleauth-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-network-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-network-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-network-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-test-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-test-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-test-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"product_id": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "python-Django1-1.11.29-3.25.1.noarch",
"product": {
"name": "python-Django1-1.11.29-3.25.1.noarch",
"product_id": "python-Django1-1.11.29-3.25.1.noarch"
}
},
{
"category": "product_version",
"name": "python-elementpath-1.3.1-1.3.2.noarch",
"product": {
"name": "python-elementpath-1.3.1-1.3.2.noarch",
"product_id": "python-elementpath-1.3.1-1.3.2.noarch"
}
},
{
"category": "product_version",
"name": "python-horizon-14.1.1~dev11-3.24.6.noarch",
"product": {
"name": "python-horizon-14.1.1~dev11-3.24.6.noarch",
"product_id": "python-horizon-14.1.1~dev11-3.24.6.noarch"
}
},
{
"category": "product_version",
"name": "python-ironic-11.1.5~dev17-3.25.5.noarch",
"product": {
"name": "python-ironic-11.1.5~dev17-3.25.5.noarch",
"product_id": "python-ironic-11.1.5~dev17-3.25.5.noarch"
}
},
{
"category": "product_version",
"name": "python-neutron-13.0.8~dev164-3.37.4.noarch",
"product": {
"name": "python-neutron-13.0.8~dev164-3.37.4.noarch",
"product_id": "python-neutron-13.0.8~dev164-3.37.4.noarch"
}
},
{
"category": "product_version",
"name": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"product": {
"name": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"product_id": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch"
}
},
{
"category": "product_version",
"name": "python-nova-18.3.1~dev82-3.37.6.noarch",
"product": {
"name": "python-nova-18.3.1~dev82-3.37.6.noarch",
"product_id": "python-nova-18.3.1~dev82-3.37.6.noarch"
}
},
{
"category": "product_version",
"name": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"product": {
"name": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"product_id": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch"
}
},
{
"category": "product_version",
"name": "python-py-1.5.4-3.3.2.noarch",
"product": {
"name": "python-py-1.5.4-3.3.2.noarch",
"product_id": "python-py-1.5.4-3.3.2.noarch"
}
},
{
"category": "product_version",
"name": "python-pysaml2-4.5.0-4.6.2.noarch",
"product": {
"name": "python-pysaml2-4.5.0-4.6.2.noarch",
"product_id": "python-pysaml2-4.5.0-4.6.2.noarch"
}
},
{
"category": "product_version",
"name": "python-xmlschema-1.0.18-1.3.2.noarch",
"product": {
"name": "python-xmlschema-1.0.18-1.3.2.noarch",
"product_id": "python-xmlschema-1.0.18-1.3.2.noarch"
}
},
{
"category": "product_version",
"name": "python3-Django1-1.11.29-3.25.1.noarch",
"product": {
"name": "python3-Django1-1.11.29-3.25.1.noarch",
"product_id": "python3-Django1-1.11.29-3.25.1.noarch"
}
},
{
"category": "product_version",
"name": "python3-elementpath-1.3.1-1.3.2.noarch",
"product": {
"name": "python3-elementpath-1.3.1-1.3.2.noarch",
"product_id": "python3-elementpath-1.3.1-1.3.2.noarch"
}
},
{
"category": "product_version",
"name": "python3-py-1.5.4-3.3.2.noarch",
"product": {
"name": "python3-py-1.5.4-3.3.2.noarch",
"product_id": "python3-py-1.5.4-3.3.2.noarch"
}
},
{
"category": "product_version",
"name": "python3-pysaml2-4.5.0-4.6.2.noarch",
"product": {
"name": "python3-pysaml2-4.5.0-4.6.2.noarch",
"product_id": "python3-pysaml2-4.5.0-4.6.2.noarch"
}
},
{
"category": "product_version",
"name": "python3-xmlschema-1.0.18-1.3.2.noarch",
"product": {
"name": "python3-xmlschema-1.0.18-1.3.2.noarch",
"product_id": "python3-xmlschema-1.0.18-1.3.2.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"product": {
"name": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"product_id": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"product": {
"name": "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"product_id": "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"product": {
"name": "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"product_id": "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"product": {
"name": "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"product_id": "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"product": {
"name": "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"product_id": "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"product": {
"name": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"product_id": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"product": {
"name": "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"product_id": "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-keystone-aarch64-14.2.1~dev4-3.24.3.noarch",
"product": {
"name": "venv-openstack-keystone-aarch64-14.2.1~dev4-3.24.3.noarch",
"product_id": "venv-openstack-keystone-aarch64-14.2.1~dev4-3.24.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-keystone-ppc64le-14.2.1~dev4-3.24.3.noarch",
"product": {
"name": "venv-openstack-keystone-ppc64le-14.2.1~dev4-3.24.3.noarch",
"product_id": "venv-openstack-keystone-ppc64le-14.2.1~dev4-3.24.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-keystone-s390x-14.2.1~dev4-3.24.3.noarch",
"product": {
"name": "venv-openstack-keystone-s390x-14.2.1~dev4-3.24.3.noarch",
"product_id": "venv-openstack-keystone-s390x-14.2.1~dev4-3.24.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"product": {
"name": "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"product_id": "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"product": {
"name": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"product_id": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"product": {
"name": "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"product_id": "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"product": {
"name": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"product_id": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"product": {
"name": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"product_id": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"product": {
"name": "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"product_id": "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"product": {
"name": "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"product_id": "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"product": {
"name": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"product_id": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"product": {
"name": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"product_id": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch"
}
},
{
"category": "product_version",
"name": "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"product": {
"name": "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"product_id": "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cassandra-3.11.10-3.3.3.ppc64le",
"product": {
"name": "cassandra-3.11.10-3.3.3.ppc64le",
"product_id": "cassandra-3.11.10-3.3.3.ppc64le"
}
},
{
"category": "product_version",
"name": "cassandra-javadoc-3.11.10-3.3.3.ppc64le",
"product": {
"name": "cassandra-javadoc-3.11.10-3.3.3.ppc64le",
"product_id": "cassandra-javadoc-3.11.10-3.3.3.ppc64le"
}
},
{
"category": "product_version",
"name": "cassandra-tools-3.11.10-3.3.3.ppc64le",
"product": {
"name": "cassandra-tools-3.11.10-3.3.3.ppc64le",
"product_id": "cassandra-tools-3.11.10-3.3.3.ppc64le"
}
},
{
"category": "product_version",
"name": "grafana-6.7.4-3.23.2.ppc64le",
"product": {
"name": "grafana-6.7.4-3.23.2.ppc64le",
"product_id": "grafana-6.7.4-3.23.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kibana-4.6.6-4.9.2.ppc64le",
"product": {
"name": "kibana-4.6.6-4.9.2.ppc64le",
"product_id": "kibana-4.6.6-4.9.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.ppc64le",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.ppc64le",
"product_id": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.ppc64le",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.ppc64le",
"product_id": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "grafana-6.7.4-3.23.2.s390x",
"product": {
"name": "grafana-6.7.4-3.23.2.s390x",
"product_id": "grafana-6.7.4-3.23.2.s390x"
}
},
{
"category": "product_version",
"name": "kibana-4.6.6-4.9.2.s390x",
"product": {
"name": "kibana-4.6.6-4.9.2.s390x",
"product_id": "kibana-4.6.6-4.9.2.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.s390x",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.s390x",
"product_id": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.s390x",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.s390x",
"product_id": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "cassandra-3.11.10-3.3.3.x86_64",
"product": {
"name": "cassandra-3.11.10-3.3.3.x86_64",
"product_id": "cassandra-3.11.10-3.3.3.x86_64"
}
},
{
"category": "product_version",
"name": "cassandra-javadoc-3.11.10-3.3.3.x86_64",
"product": {
"name": "cassandra-javadoc-3.11.10-3.3.3.x86_64",
"product_id": "cassandra-javadoc-3.11.10-3.3.3.x86_64"
}
},
{
"category": "product_version",
"name": "cassandra-tools-3.11.10-3.3.3.x86_64",
"product": {
"name": "cassandra-tools-3.11.10-3.3.3.x86_64",
"product_id": "cassandra-tools-3.11.10-3.3.3.x86_64"
}
},
{
"category": "product_version",
"name": "grafana-6.7.4-3.23.2.x86_64",
"product": {
"name": "grafana-6.7.4-3.23.2.x86_64",
"product_id": "grafana-6.7.4-3.23.2.x86_64"
}
},
{
"category": "product_version",
"name": "kibana-4.6.6-4.9.2.x86_64",
"product": {
"name": "kibana-4.6.6-4.9.2.x86_64",
"product_id": "kibana-4.6.6-4.9.2.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64",
"product_id": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.x86_64",
"product": {
"name": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.x86_64",
"product_id": "ruby2.1-rubygem-activerecord-session_store-doc-0.1.2-4.3.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 9",
"product": {
"name": "SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:9"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 9",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:9"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch"
},
"product_reference": "ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch"
},
"product_reference": "ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-3.11.10-3.3.3.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64"
},
"product_reference": "cassandra-3.11.10-3.3.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-tools-3.11.10-3.3.3.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64"
},
"product_reference": "cassandra-tools-3.11.10-3.3.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-6.7.4-3.23.2.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64"
},
"product_reference": "grafana-6.7.4-3.23.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kibana-4.6.6-4.9.2.x86_64 as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64"
},
"product_reference": "kibana-4.6.6-4.9.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch"
},
"product_reference": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch"
},
"product_reference": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-Django1-1.11.29-3.25.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch"
},
"product_reference": "python-Django1-1.11.29-3.25.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-elementpath-1.3.1-1.3.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch"
},
"product_reference": "python-elementpath-1.3.1-1.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-horizon-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch"
},
"product_reference": "python-horizon-14.1.1~dev11-3.24.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-ironic-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "python-ironic-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "python-neutron-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch"
},
"product_reference": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "python-nova-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch"
},
"product_reference": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-py-1.5.4-3.3.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch"
},
"product_reference": "python-py-1.5.4-3.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pysaml2-4.5.0-4.6.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch"
},
"product_reference": "python-pysaml2-4.5.0-4.6.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-xmlschema-1.0.18-1.3.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch"
},
"product_reference": "python-xmlschema-1.0.18-1.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch"
},
"product_reference": "venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch"
},
"product_reference": "venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch"
},
"product_reference": "venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch"
},
"product_reference": "venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch"
},
"product_reference": "venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch"
},
"product_reference": "venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch"
},
"product_reference": "venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch"
},
"product_reference": "venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch"
},
"product_reference": "venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch"
},
"product_reference": "venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch"
},
"product_reference": "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch"
},
"product_reference": "venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch"
},
"product_reference": "venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch"
},
"product_reference": "venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch"
},
"product_reference": "venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch"
},
"product_reference": "venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch as component of SUSE OpenStack Cloud 9",
"product_id": "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch"
},
"product_reference": "venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-3.11.10-3.3.3.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64"
},
"product_reference": "cassandra-3.11.10-3.3.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cassandra-tools-3.11.10-3.3.3.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64"
},
"product_reference": "cassandra-tools-3.11.10-3.3.3.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch"
},
"product_reference": "crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-6.7.4-3.23.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64"
},
"product_reference": "grafana-6.7.4-3.23.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kibana-4.6.6-4.9.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64"
},
"product_reference": "kibana-4.6.6-4.9.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch"
},
"product_reference": "openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch"
},
"product_reference": "openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-Django1-1.11.29-3.25.1.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch"
},
"product_reference": "python-Django1-1.11.29-3.25.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-elementpath-1.3.1-1.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch"
},
"product_reference": "python-elementpath-1.3.1-1.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-horizon-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch"
},
"product_reference": "python-horizon-14.1.1~dev11-3.24.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-ironic-11.1.5~dev17-3.25.5.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch"
},
"product_reference": "python-ironic-11.1.5~dev17-3.25.5.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-13.0.8~dev164-3.37.4.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch"
},
"product_reference": "python-neutron-13.0.8~dev164-3.37.4.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch"
},
"product_reference": "python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-18.3.1~dev82-3.37.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch"
},
"product_reference": "python-nova-18.3.1~dev82-3.37.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch"
},
"product_reference": "python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-py-1.5.4-3.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch"
},
"product_reference": "python-py-1.5.4-3.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pysaml2-4.5.0-4.6.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch"
},
"product_reference": "python-pysaml2-4.5.0-4.6.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-xmlschema-1.0.18-1.3.2.noarch as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch"
},
"product_reference": "python-xmlschema-1.0.18-1.3.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 9",
"product_id": "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
},
"product_reference": "ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 9"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-11481",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11481"
}
],
"notes": [
{
"category": "general",
"text": "Kibana versions prior to 6.0.1 and 5.6.5 had a cross-site scripting (XSS) vulnerability via URL fields that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11481",
"url": "https://www.suse.com/security/cve/CVE-2017-11481"
},
{
"category": "external",
"summary": "SUSE Bug 1044849 for CVE-2017-11481",
"url": "https://bugzilla.suse.com/1044849"
},
{
"category": "external",
"summary": "SUSE Bug 1072315 for CVE-2017-11481",
"url": "https://bugzilla.suse.com/1072315"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2017-11481"
},
{
"cve": "CVE-2017-11499",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-11499"
}
],
"notes": [
{
"category": "general",
"text": "Node.js v4.0 through v4.8.3, all versions of v5.x, v6.0 through v6.11.0, v7.0 through v7.10.0, and v8.0 through v8.1.3 was susceptible to hash flooding remote DoS attacks as the HashTable seed was constant across a given released version of Node.js. This was a result of building with V8 snapshots enabled by default which caused the initially randomized seed to be overwritten on startup.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-11499",
"url": "https://www.suse.com/security/cve/CVE-2017-11499"
},
{
"category": "external",
"summary": "SUSE Bug 1044849 for CVE-2017-11499",
"url": "https://bugzilla.suse.com/1044849"
},
{
"category": "external",
"summary": "SUSE Bug 1048299 for CVE-2017-11499",
"url": "https://bugzilla.suse.com/1048299"
},
{
"category": "external",
"summary": "SUSE Bug 1051117 for CVE-2017-11499",
"url": "https://bugzilla.suse.com/1051117"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "important"
}
],
"title": "CVE-2017-11499"
},
{
"cve": "CVE-2018-18623",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18623"
}
],
"notes": [
{
"category": "general",
"text": "Grafana 5.3.1 has XSS via the \"Dashboard \u003e Text Panel\" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18623",
"url": "https://www.suse.com/security/cve/CVE-2018-18623"
},
{
"category": "external",
"summary": "SUSE Bug 1172450 for CVE-2018-18623",
"url": "https://bugzilla.suse.com/1172450"
},
{
"category": "external",
"summary": "SUSE Bug 1174583 for CVE-2018-18623",
"url": "https://bugzilla.suse.com/1174583"
},
{
"category": "external",
"summary": "SUSE Bug 1175951 for CVE-2018-18623",
"url": "https://bugzilla.suse.com/1175951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2018-18623"
},
{
"cve": "CVE-2018-18624",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18624"
}
],
"notes": [
{
"category": "general",
"text": "Grafana 5.3.1 has XSS via a column style on the \"Dashboard \u003e Table Panel\" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18624",
"url": "https://www.suse.com/security/cve/CVE-2018-18624"
},
{
"category": "external",
"summary": "SUSE Bug 1172450 for CVE-2018-18624",
"url": "https://bugzilla.suse.com/1172450"
},
{
"category": "external",
"summary": "SUSE Bug 1174583 for CVE-2018-18624",
"url": "https://bugzilla.suse.com/1174583"
},
{
"category": "external",
"summary": "SUSE Bug 1175951 for CVE-2018-18624",
"url": "https://bugzilla.suse.com/1175951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2018-18624"
},
{
"cve": "CVE-2018-18625",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-18625"
}
],
"notes": [
{
"category": "general",
"text": "Grafana 5.3.1 has XSS via a link on the \"Dashboard \u003e All Panels \u003e General\" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-18625",
"url": "https://www.suse.com/security/cve/CVE-2018-18625"
},
{
"category": "external",
"summary": "SUSE Bug 1172450 for CVE-2018-18625",
"url": "https://bugzilla.suse.com/1172450"
},
{
"category": "external",
"summary": "SUSE Bug 1174583 for CVE-2018-18625",
"url": "https://bugzilla.suse.com/1174583"
},
{
"category": "external",
"summary": "SUSE Bug 1175951 for CVE-2018-18625",
"url": "https://bugzilla.suse.com/1175951"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2018-18625"
},
{
"cve": "CVE-2018-19039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-19039"
}
],
"notes": [
{
"category": "general",
"text": "Grafana before 4.6.5 and 5.x before 5.3.3 allows remote authenticated users to read arbitrary files by leveraging Editor or Admin permissions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-19039",
"url": "https://www.suse.com/security/cve/CVE-2018-19039"
},
{
"category": "external",
"summary": "SUSE Bug 1115960 for CVE-2018-19039",
"url": "https://bugzilla.suse.com/1115960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2018-19039"
},
{
"cve": "CVE-2019-15043",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-15043"
}
],
"notes": [
{
"category": "general",
"text": "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-15043",
"url": "https://www.suse.com/security/cve/CVE-2019-15043"
},
{
"category": "external",
"summary": "SUSE Bug 1148383 for CVE-2019-15043",
"url": "https://bugzilla.suse.com/1148383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "important"
}
],
"title": "CVE-2019-15043"
},
{
"cve": "CVE-2019-25025",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-25025"
}
],
"notes": [
{
"category": "general",
"text": "The activerecord-session_store (aka Active Record Session Store) component through 1.1.3 for Ruby on Rails does not use a constant-time approach when delivering information about whether a guessed session ID is valid. Consequently, remote attackers can leverage timing discrepancies to achieve a correct guess in a relatively short amount of time. This is a related issue to CVE-2019-16782.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-25025",
"url": "https://www.suse.com/security/cve/CVE-2019-25025"
},
{
"category": "external",
"summary": "SUSE Bug 1159548 for CVE-2019-25025",
"url": "https://bugzilla.suse.com/1159548"
},
{
"category": "external",
"summary": "SUSE Bug 1183174 for CVE-2019-25025",
"url": "https://bugzilla.suse.com/1183174"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2019-25025"
},
{
"cve": "CVE-2020-10743",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10743"
}
],
"notes": [
{
"category": "general",
"text": "It was discovered that OpenShift Container Platform\u0027s (OCP) distribution of Kibana could open in an iframe, which made it possible to intercept and manipulate requests. This flaw allows an attacker to trick a user into performing arbitrary actions in OCP\u0027s distribution of Kibana, such as clickjacking.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10743",
"url": "https://www.suse.com/security/cve/CVE-2020-10743"
},
{
"category": "external",
"summary": "SUSE Bug 1171909 for CVE-2020-10743",
"url": "https://bugzilla.suse.com/1171909"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.9,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "low"
}
],
"title": "CVE-2020-10743"
},
{
"cve": "CVE-2020-11110",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-11110"
}
],
"notes": [
{
"category": "general",
"text": "Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-11110",
"url": "https://www.suse.com/security/cve/CVE-2020-11110"
},
{
"category": "external",
"summary": "SUSE Bug 1174583 for CVE-2020-11110",
"url": "https://bugzilla.suse.com/1174583"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-11110"
},
{
"cve": "CVE-2020-12052",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-12052"
}
],
"notes": [
{
"category": "general",
"text": "Grafana version \u003c 6.7.3 is vulnerable for annotation popup XSS.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-12052",
"url": "https://www.suse.com/security/cve/CVE-2020-12052"
},
{
"category": "external",
"summary": "SUSE Bug 1170657 for CVE-2020-12052",
"url": "https://bugzilla.suse.com/1170657"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-12052"
},
{
"cve": "CVE-2020-13379",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-13379"
}
],
"notes": [
{
"category": "general",
"text": "The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauthenticated user/client to make Grafana send HTTP requests to any URL and return its result to the user/client. This can be used to gain information about the network that Grafana is running on. Furthermore, passing invalid URL objects could be used for DOS\u0027ing Grafana via SegFault.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-13379",
"url": "https://www.suse.com/security/cve/CVE-2020-13379"
},
{
"category": "external",
"summary": "SUSE Bug 1172409 for CVE-2020-13379",
"url": "https://bugzilla.suse.com/1172409"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "important"
}
],
"title": "CVE-2020-13379"
},
{
"cve": "CVE-2020-17516",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-17516"
}
],
"notes": [
{
"category": "general",
"text": "Apache Cassandra versions 2.1.0 to 2.1.22, 2.2.0 to 2.2.19, 3.0.0 to 3.0.23, and 3.11.0 to 3.11.9, when using \u0027dc\u0027 or \u0027rack\u0027 internode_encryption setting, allows both encrypted and unencrypted internode connections. A misconfigured node or a malicious user can use the unencrypted connection despite not being in the same rack or dc, and bypass mutual TLS requirement.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-17516",
"url": "https://www.suse.com/security/cve/CVE-2020-17516"
},
{
"category": "external",
"summary": "SUSE Bug 1181689 for CVE-2020-17516",
"url": "https://bugzilla.suse.com/1181689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-17516"
},
{
"cve": "CVE-2020-24303",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-24303"
}
],
"notes": [
{
"category": "general",
"text": "Grafana before 7.1.0-beta 1 allows XSS via a query alias for the ElasticSearch datasource.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-24303",
"url": "https://www.suse.com/security/cve/CVE-2020-24303"
},
{
"category": "external",
"summary": "SUSE Bug 1178243 for CVE-2020-24303",
"url": "https://bugzilla.suse.com/1178243"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-24303"
},
{
"cve": "CVE-2020-29651",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-29651"
}
],
"notes": [
{
"category": "general",
"text": "A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-29651",
"url": "https://www.suse.com/security/cve/CVE-2020-29651"
},
{
"category": "external",
"summary": "SUSE Bug 1179805 for CVE-2020-29651",
"url": "https://bugzilla.suse.com/1179805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2020-29651"
},
{
"cve": "CVE-2021-21238",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21238"
}
],
"notes": [
{
"category": "general",
"text": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. All users of pysaml2 that need to validate signed SAML documents are impacted. The vulnerability is a variant of XML Signature wrapping because it did not validate the SAML document against an XML schema. This allowed invalid XML documents to be processed and such a document can trick pysaml2 with a wrapped signature. This is fixed in PySAML2 6.5.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21238",
"url": "https://www.suse.com/security/cve/CVE-2021-21238"
},
{
"category": "external",
"summary": "SUSE Bug 1181277 for CVE-2021-21238",
"url": "https://bugzilla.suse.com/1181277"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2021-21238"
},
{
"cve": "CVE-2021-21239",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-21239"
}
],
"notes": [
{
"category": "general",
"text": "PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default CryptoBackendXmlSec1 backend and need to verify signed SAML documents are impacted. PySAML2 does not ensure that a signed SAML document is correctly signed. The default CryptoBackendXmlSec1 backend is using the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within the given document. xmlsec1 needs to be configured explicitly to only use only _x509 certificates_ for the verification process of the SAML document signature. This is fixed in PySAML2 6.5.0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-21239",
"url": "https://www.suse.com/security/cve/CVE-2021-21239"
},
{
"category": "external",
"summary": "SUSE Bug 1181278 for CVE-2021-21239",
"url": "https://bugzilla.suse.com/1181278"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2021-21239"
},
{
"cve": "CVE-2021-23336",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23336"
}
],
"notes": [
{
"category": "general",
"text": "The package python/cpython from 0 and before 3.6.13, from 3.7.0 and before 3.7.10, from 3.8.0 and before 3.8.8, from 3.9.0 and before 3.9.2 are vulnerable to Web Cache Poisoning via urllib.parse.parse_qsl and urllib.parse.parse_qs by using a vector called parameter cloaking. When the attacker can separate query parameters using a semicolon (;), they can cause a difference in the interpretation of the request between the proxy (running with default configuration) and the server. This can result in malicious requests being cached as completely safe ones, as the proxy would usually not see the semicolon as a separator, and therefore would not include it in a cache key of an unkeyed parameter.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23336",
"url": "https://www.suse.com/security/cve/CVE-2021-23336"
},
{
"category": "external",
"summary": "SUSE Bug 1182179 for CVE-2021-23336",
"url": "https://bugzilla.suse.com/1182179"
},
{
"category": "external",
"summary": "SUSE Bug 1182379 for CVE-2021-23336",
"url": "https://bugzilla.suse.com/1182379"
},
{
"category": "external",
"summary": "SUSE Bug 1182433 for CVE-2021-23336",
"url": "https://bugzilla.suse.com/1182433"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2021-23336"
},
{
"cve": "CVE-2021-27358",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-27358"
}
],
"notes": [
{
"category": "general",
"text": "The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-27358",
"url": "https://www.suse.com/security/cve/CVE-2021-27358"
},
{
"category": "external",
"summary": "SUSE Bug 1183803 for CVE-2021-27358",
"url": "https://bugzilla.suse.com/1183803"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "important"
}
],
"title": "CVE-2021-27358"
},
{
"cve": "CVE-2021-28658",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-28658"
}
],
"notes": [
{
"category": "general",
"text": "In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser allowed directory traversal via uploaded files with suitably crafted file names. Built-in upload handlers were not affected by this vulnerability.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-28658",
"url": "https://www.suse.com/security/cve/CVE-2021-28658"
},
{
"category": "external",
"summary": "SUSE Bug 1184148 for CVE-2021-28658",
"url": "https://bugzilla.suse.com/1184148"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "low"
}
],
"title": "CVE-2021-28658"
},
{
"cve": "CVE-2021-31542",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-31542"
}
],
"notes": [
{
"category": "general",
"text": "In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-31542",
"url": "https://www.suse.com/security/cve/CVE-2021-31542"
},
{
"category": "external",
"summary": "SUSE Bug 1185623 for CVE-2021-31542",
"url": "https://bugzilla.suse.com/1185623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2021-31542"
},
{
"cve": "CVE-2021-33203",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-33203"
}
],
"notes": [
{
"category": "general",
"text": "Django before 2.2.24, 3.x before 3.1.12, and 3.2.x before 3.2.4 has a potential directory traversal via django.contrib.admindocs. Staff members could use the TemplateDetailView view to check the existence of arbitrary files. Additionally, if (and only if) the default admindocs templates have been customized by application developers to also show file contents, then not only the existence but also the file contents would have been exposed. In other words, there is directory traversal outside of the template root directories.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-33203",
"url": "https://www.suse.com/security/cve/CVE-2021-33203"
},
{
"category": "external",
"summary": "SUSE Bug 1186608 for CVE-2021-33203",
"url": "https://bugzilla.suse.com/1186608"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "moderate"
}
],
"title": "CVE-2021-33203"
},
{
"cve": "CVE-2021-33571",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-33571"
}
],
"notes": [
{
"category": "general",
"text": "In Django 2.2 before 2.2.24, 3.x before 3.1.12, and 3.2 before 3.2.4, URLValidator, validate_ipv4_address, and validate_ipv46_address do not prohibit leading zero characters in octal literals. This may allow a bypass of access control that is based on IP addresses. (validate_ipv4_address and validate_ipv46_address are unaffected with Python 3.9.5+..) .",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-33571",
"url": "https://www.suse.com/security/cve/CVE-2021-33571"
},
{
"category": "external",
"summary": "SUSE Bug 1186611 for CVE-2021-33571",
"url": "https://bugzilla.suse.com/1186611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE OpenStack Cloud 9:ardana-neutron-9.0+git.1615223676.777f0b3-3.25.2.noarch",
"SUSE OpenStack Cloud 9:ardana-swift-9.0+git.1618235096.90974ed-3.10.2.noarch",
"SUSE OpenStack Cloud 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev20-3.26.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev17-4.21.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev4-3.24.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.29.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.23.2.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.21.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev164-6.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev82-3.27.3.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.23.1.noarch",
"SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.18.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:cassandra-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:cassandra-tools-3.11.10-3.3.3.x86_64",
"SUSE OpenStack Cloud Crowbar 9:crowbar-openstack-6.0+git.1616146717.a89ae0f4e-3.34.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.23.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:kibana-4.6.6-4.9.2.x86_64",
"SUSE OpenStack Cloud Crowbar 9:openstack-dashboard-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-cells-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-compute-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-conductor-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-console-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-novncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-placement-api-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-scheduler-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-serialproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:openstack-nova-vncproxy-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-Django1-1.11.29-3.25.1.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-elementpath-1.3.1-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-horizon-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev17-3.25.5.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev164-3.37.4.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-12.0.1~dev29-3.25.3.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-nova-18.3.1~dev82-3.37.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-openstack_auth-14.1.1~dev11-3.24.6.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-py-1.5.4-3.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-pysaml2-4.5.0-4.6.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:python-xmlschema-1.0.18-1.3.2.noarch",
"SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-activerecord-session_store-0.1.2-4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2021-06-11T13:13:53Z",
"details": "important"
}
],
"title": "CVE-2021-33571"
}
]
}
SUSE-SU-2019:2671-1
Vulnerability from csaf_suse - Published: 2019-10-15 12:46 - Updated: 2019-10-15 12:46Summary
Security update for crowbar-core, crowbar-openstack, grafana, novnc, openstack-keystone, openstack-neutron, openstack-neutron-lbaas, openstack-nova, openstack-tempest, python-pysaml2, python-urllib3, rubygem-chef, rubygem-easy_diff, sleshammer
Severity
Moderate
Notes
Title of the patch: Security update for crowbar-core, crowbar-openstack, grafana, novnc, openstack-keystone, openstack-neutron, openstack-neutron-lbaas, openstack-nova, openstack-tempest, python-pysaml2, python-urllib3, rubygem-chef, rubygem-easy_diff, sleshammer
Description of the patch: This update for crowbar-core, crowbar-openstack, grafana, novnc, openstack-keystone, openstack-neutron, openstack-neutron-lbaas, openstack-nova, openstack-tempest, python-pysaml2, python-urllib3, rubygem-chef, rubygem-easy_diff, sleshammer fixes the following issues:
In python-pysaml2 the following security issue was fixed:
- CVE-2016-10127: Fixed an XML external entity attack. (bsc#1019074)
crowbar-core was updated to version 4.0+git.1570463621.40b11cd48:
* network: Don't set datapath-ids on ovs-bridges anymore (bsc#1152916)
* barclamp_lib: Sync timeout with other barclamps (SOC-10513, SOC-10011)
* gems: Update easy_diff to 1.0.0 (SOC-10505)
* crowbar: Do not read /etc/crowbar.install.key in non-SUSE init script
* transition.sh: Do not read /etc/crowbar.install.key
* gather_logs: Make it a bit useful again
* gather_logs: Do not read /etc/crowbar.install.key
* network: Allow locking down the network config for nodes (bsc#1120657)
* network: Check existing upper layers before bond setup (bsc#1120657)
* network: never plug two interface into the same ovs bridge (bsc#1120657)
* network: Avoid plugging the same interface to two ovs bridges (bsc#1120657)
* nic library: some helper for identifying base interface (bsc#1120657)
* network: Rework the vlan port replugging code (bsc#1120657)
* network: DRY out 'kill_nic_files' (noref)
* Add CVE-2019-5477 the to travis ignore list (SOC-9635)
crowbar-openstack was updated to version 4.0+git.1569429513.e7016b2b6:
* tempest: don't rely on service catalogue (SOC-10633)
* nova: set default attribute for max_threads_per_process
* database: Hardcode ruby version for package installation (SOC-10010)
* neutron: restore dhcp_domain in stable/4.0 (bsc#1145867)
* nova: add max_threads_per_process tuneable (SOC-10001, bsc#1133719)
grafana was updated to:
- CVE-2019-15043: Adds authentication to a few rest endpoints that could be used to access grafana snapshot apis to cause denial of service (SOC-10357 bsc#1148383)
Also see https://github.com/grafana/grafana/compare/v5.4.4...v5.4.5
grafana was updated to version 4.6.5:
- CVE-2018-19039: Users with Editor or Admin permissions could exfiltrate files (jsc#SOC-9976 bsc#1115960)
grafana was updated version to 4.6.4:
- CVE-2018-15727 / CVE-2018-558213: Fixed an authentication bypass because an attacker can generate a valid 'remember me'cookie knowing only a username of an LDAP or OAuth user (jsc#SOC-9980 bsc#1106515)
Other fixes:
* sql: added code migration type
* release 4.6.3
* fix default alias
* fixes broken alert eval when first condition is using OR
* fix: alert list panel now works correctly after adding manual annotation on dashboard, fixes #9951
* fix: fix for avatar images when gzip is turned on, fixes #5952
* sets version to 4.6.2
* prom: add support for default step param (#9866)
* build: fixed jshint error
* fix: Html escaping caused issue in InfluxDB query editor, could not pick greater than or less then operators, fixes #9871
* heatmap: fix tooltip in 'Time series bucket' mode, #9332 (#9867)
* fix cloudwatch ec2_instance_attribute (#9718)
* colorpicker: fix color string change #9769 (#9780)
* changes version to 4.6.1
* fix: panel view now wraps, no scrolling required, fixes #9746
* plugins: fix for loading external plugins behind auth proxy, fixes #9509
* fix: color picker bug at series overrides page, #9715 (#9738)
* tech: switch to golang 1.9.2
* tech: add missing include
* save as should only delete threshold for panels with alerts
* fix: graphite annotation tooltip included undefined, fixes #9707
* build: updated version to v4.6.0
* plugins: added backward compatible path for rxjs
* ux: updated singlestat default colors
* prometheus: fixed unsaved changes warning when changing time range due to step option on query model was changed in datasource.query code, fixes #9675
* fix: firefox can now create region annotations, fixes #9638
* alerting: only editors can pause rules
* fix: another fix for playlist view state, #9639
* fix: fixed playlist controls and view state, fixes #9639
* prom: adds pre built grafana dashboard
* bump version for publish_testing.sh
* update version to 4.6.0-beta3
* plugins: expose dashboard impression store
* modify $__timeGroup macro so it can be used in select clause (#9527)
* plugins: fixes path issue on Windows
* prometheus: enable gzip for /metrics endpoint
* fix: fixed save to file button in export modal, fixes #9586
* mysql: add usage stats for mysql
* pluginloader: esModule true for systemjs config
* Fix heatmap Y axis rendering (#9580)
* fix vector range
* prometheus: add builtin template variable as range vectors
* fix: fixed prometheus step issue that caused browser crash, fixes #9575
* fix: getting started panel and mark adding data source as done, fixes #9568
* Fixes for annotations API (#9577)
* bump packagecloud script
* build: added imports of rxjs utility functions
* prepare for v4.6.0-beta2 release
* fix template variable expanding
* annotations: quote reserved fields (#9550)
* ux: align alert and btn colors
* fix: fixed color pickers that were broken in minified builds, fixes #9549
* textpanel: fixes #9491
* csv: fix import for saveAs shim
* plugins: expose more util and flot dependencies
* alert_tab: clear test result when testing rules
* (cloudwatch) fix cloudwatch query error over 24h (#9536)
* show error message when cloudwatch datasource can't add
* update packagecloud script for 4.6.0-beta1
* changelog: adds note about closing #9516
* alerting: add count_non_null reducer
* Update rpm.md
* fix: can now remove annotation tags without popover closing
* tech: add backward compatibility for <spectrum-picker> directive (#9510)
* fix: fixed links on new 404 page, fixes #9493
* logging: dont use cli logger in http_server
* oauth: raise error if session state is missing
* oauth: provide more logging for failed oauth requests
* prepare for 4.6.0-beta1 release
* docs: updated whats new article
* docs: initial draft release v46
* graph: fix y-axis decimalTick check. Fixes #9405
* minor docs update
* docs: annotation docs update
* changelog: adds note about closing #7104
* changelog: adds note about closing #9373
* metrics: disable gzip for /metrics endpoint (#9468)
* Annotation docs (#9506)
* Update CHANGELOG.md
* Update PLUGIN_DEV.md
* Update PLUGIN_DEV.md
* Update README.md
* Fixed link issue in CHANGELOG
* Create PLUGIN_DEV.md
* changelog: adds note about closing #9371,#5334,#8812
* ds_edit: placeholder should only be cert header
* fixed minor styling issus (#9497)
* fix: alert api limit param did not work and caused SQL syntax error, fixes #9492
* annotations: add endpoint for writing graphite-like events (#9495)
* Update unsaved_changes_modal.ts
* fix: set lastSeenAt date when creating users to then years in past insteasd of empty date, fixes #9260
* ux: minor ux fix
* Retain old name for TLS client auth
* Return error if datasource TLS CA not parsed
* Datasource settings: Make HTTP all caps
* Datasource HTTP settings: Add TLS skip verify
* Make URL capitalisation consistent in UI
* Alias macron package in app_routes.go
* Verify datasource TLS and split client auth and CA
* Tidy spacing in datasource TLS settings
* Tests: Clarify what InsecureSkipVerify does
* postgres: add missing ngInject decorator
* docs: initial docs for new annotation features, #9483
* Adds note for #9209 to changelog
* Postgres Data Source (#9475)
* tech: expose more to plugins, closes #9456
* Fix NaN handling (#9469)
* snapshots: improve snapshot listing performance, #9314 (#9477)
* mysql: fix interpolation for numbers in temp vars
* Added docs for Kafka alerting
* Fixed failing go tests
* gofmt fixes
* Added tests
* Kafka REST Proxy works with Grafana
* added insrtuctions for oauth2 okta bitbucket (#9471)
* Unified Color picker fixes (#9466)
* Show min interval query option for mixed datasource (#9467)
* gzip: plugin readme content set explicitly
* ignore pattern for vendored libs
* fix: escape metric segment auto complete, fixes #9423
* Corrected a PostgreSQL SELECT statement. (#9460)
* tests: found the unhandled promise issue in the dash import tests
* testing: fixing tests
* annotations: minor change to default/edit annotation color
* Create annotations (#8197)
* OAuth: Rename sslcli
* OAuth: Separate TLS client auth and CA config
* OAuth: Check both TLS client cert and key
* Always verify TLS unless explicitly told otherwise
* fix: threshold's colors in table panels (#9445) (#9453)
* singlestat: fix sizing bug #9337 (#9448)
* Revert 'Fix coloring in singlestat if null value (#9438)' (#9443)
* Fix coloring in singlestat if null value (#9438)
* fix: missing semicolon
* changed jsontree to use jsonexplorer (#9416)
* docs page for authproxy (#9420)
* Update codebox (#9430)
* Series color picker fix (#9442)
* fix type in readme
* removed commented line
* changelog: adds note about closing #9110
* Fixed typo
* Change empty string checks and improve logging
* changelog: adds note about closing #9208
* Fix spelling on 404 page.
* Lint fix
* Update kbn.js
* Add Norwegian Krone denominator for currency
* fixed layout for column options, changed dropdown for date format kept old code
* build: add noUnusedLocals to tsc parameters
* build: install go based on env variable
* changes go version to 1.9.1
* changelog: adds note about closing #9226
* changelog: add note about closing #9429
* changelog: adds note about closing #9399
* Fix formatting issue
* Add milliseconds format in table panel's config
* support for s3 path (#9151)
* Remove apparently unnecessary .flush() calls.
* Fix empty message and toolong attribute names Use default state message if no message is provided by the user Slice attribute name to maximum of 50 chars
* Address review comments.
* changelog: add note about closing #7175
* plugin_loader: expose app_events to plugins
* Add the missing comma
* colorpicker: refactoring the new unififed colorpicker, #9347
* Unified colorpicker (#9347)
* fix missing column headers in excel export (#9413)
* build: remove clean plugin from dev build
* build: fixed broken elastic unit test
* shore: cleanup unused stuff in common.d.ts
* Build URL for close alert request differently
* some restyling (#9409)
* Docs text fixes (#9408)
* Checkbox fixes (#9400)
* fix: ensure panel.datasource is null as default
* plugibs: expose more to plugins
* properly parse & pass upload image bool from config
* break out slack upload into separate function
* tech: minor npm scripts update
* build: fixed build
* refactoring: minor refactoring of PR #8916
* Update script to make it use OpsGenie's REST API
* docs: minor docs fix
* Merge branch 'master' of github.com:grafana/grafana
* build: minor webpack fix
* docs: updated building from source docs
* playlist: play and edit should use same width
* shore: fixed html indentation, #9368
* tech: updated yarn.lock
* shore: minor cleanup
* Webpack (#9391)
* fixing json for CI
* adding support for token-based slack file.upload API call for posting images to slack
* changelog: adds note about closing #8479
* changelog: adds note about closing #8050
* changelog: adds note about closing #9386
* change pdiff to percent_diff for conditions
* panel: rename label on csv export modal
* add diff and pdiff for conditions
* fix, add targetContainsTemplate()
* fix cloudwatch alert bug
* add debug log
* move extend statistics handling code to backend
* fix assume role
* improve cloudwatch tsdb
* refactor cloudwatch code
* remove obsolete code
* move cloudwatch crendential related code
* remove old handler
* fix annotation query
* fix time
* fix dimension convertion
* re-implement annotation query
* fix parameter format
* fix alert feature
* fix parameter format
* refactor cloudwatch to support new tsdb interface
* refactor cloudwatch frontend code
* refactor cloudwatch frontend code
* fix test
* re-implement dimension_values()
* fix error message
* remove performEC2DescribeInstances()
* re-implement ec2_instance_attribute()
* re-implement ebs_volume_ids()
* import the change, https://github.com/grafana/grafana/pull/9268
* fix conflict
* fix test
* remove obsolete GetMetricStatistics()
* fix test
* move test code
* fix conflict
* porting other suggestion
* re-implement get regions
* move the metric find query code
* (cloudwatch) move query parameter to 'parameters'
* parse duration
* remove offset for startTime
* cache creds for keys/credentials auth type
* fix test
* fix invalid query filter
* count up metrics
* (cloudwatch) alerting
* add brazil currency
* tech: upgrade of systemjs to 0.20.x working
* tech: reverted to systemjs
* tech: migrating elasticsearch to typescript
* changelog: add note about using golang 1.9
* change go version to 1.9
* changelog: adds note about closing #9367
* tech: systemjs upgrade
* made a text-panel page, maybe we don't need it
* cleaned up html/sass and added final touches
* Enable dualstack in every net.Dialer, fixes #9364
* jaeger: capitalize tracer name
* jaeger: logging improvement
* tech: systemjs upgrade
* Have include intervalFactor in its calculation, so always equal to the step query parameter.
* alertlist: toggle play/pause button
* updated css and html for recent state changes for alert lists
* Fix export_modal message (#9353)
* s3: minor fix for PR #9223
* internal metrics: add grafana version
* changelog: adds note about closing 5765
* Update latest.json
* typescript: stricter typescript option
* prom_docker: give targets correct job name
* testdata: add bucket scenarios for heatmap
* dev-docker: add grafana as target
* changelog: add note ablout closing #9319
* introduce smtp config option for EHLO identity
* changelog: note about closing #9250
* go fmt
* new page for text, needs more work
* replaced img in graph, created alert list page
* docs: update docs
* Update CHANGELOG.md
* changelog: adds note about closing #5873
* replaced image
* Docs new updates (#9324)
* Update CHANGELOG.md
* Update latest.json
* cleanup: removed unused file
* tech: remove bower and moved remaining bower dependencies to npm
* tech: cleanup and fixed build issue
* tech: upgraded angularjs and moved dependency from bower to npm, closes #9327
* follow go idiom and return error as second param
* tech: updated tsconfig
* docker: adds alertmanager to prometheus fig
* tech: more tslint rules
* another img update
* tech: removing unused variables from typescript files, and making tslint rules more strict
* deleted old shortcuts instruction
* text uppdates for dashlist and singlestat(+img). updated the keyboard shortcuts
* context is reserved for go's context
* make ds a param for Query
* remove batch abstraction
* rename executor into tsdbqueryendpoint
* remove unused structs
* refactor response flow
* tech: removed test component
* ux: minor singlestat update
* singlestat: minor change
* Update CHANGELOG.md
* Singlestat time (#9298)
* tech: progress on react poc
* adds note about closing #9213
* Update _navbar.scss
* replaced images, updating text(not finished)
* fix: close for 'Unsaved Changes' modal, #9284 (#9313)
* Initial graphite tags support (#9239)
* tech: initial react poc
* Make details more clean in PD description
* bug: enable HEAD requests again
* Add `DbClusterIdentifier` to CloudWatch dimensions (#9297)
* templating: fix dependent variable updating (#9306)
* Fix adhoc filters restoration (#9303)
* Explicitly refer to Github 'OAuth' applications
* config bucket and region for s3 uploader
* fixes bug introduced with prom namespaces
* fixing spelling of millesecond -> millisecond
* fixing spelling of millesecond -> millisecond
* Remove duplicate bus.AddHandler() (#9289)
* Update CHANGELOG.md
* use same key as mt
* tag alert queries that return no_data
* updated error page html+css, added ds_store to ignore (#9285)
* public/app/plugins/panel/graph/specs/graph_specs.ts: relax tests to be 'within' instead of 'equal', so they won't fail on i686 (#9286)
* Fix path to icon (#9276)
* adds note about fix in v4.5.2
* skip NaN values when writing to graphite
* addded mass units, #9265 (#9273)
* Fully fill out nulls in cloudfront data source (#9268)
* make it possible to configure sampler type
* mark >=400 responses as error
* change port for jaeger dev container
* logwrapper for jaeger
* make samplerconfig.param configurable
* adds custom tags from settings
* use route as span name
* add trace headers for outgoing requests
* docker file for running jaeger
* better formating for error trace
* attach context with span to *http.Request
* add traces for datasource reverse proxy requests
* trace failed executions
* use tags instead of logs
* use opentracing ext package when possible
* set example port to zipkin default
* adds codahale to vendor
* makes jaeger tracing configurable
* add trace parameters for outgoing requests
* adds basic traces using open traces
* require dashboard panels to have id
* fix: jsonData should not be allowed to be null, fixes #9258
* packaging: reduce package size
* Update upgrading.md (#9263)
* Added --pluginUrl option to grafana-cli for local network plugin installation
* adds note about closing #1395
* add locale format
* update changelog
* fixes broken tests :boom:
* minor code adjusetments
* pass context to image uploaders
* remove unused deps
* Reduced OAuth scope to read_write
* GCS support via JSON API
* gofmt fixes
* Added GCS support #8370
* move more known datasources from others
* Remove alert thresholds on panel duplicate, issue #9178 (#9257)
* 4.5.1 docs + update version to 5.0.0-pre1
* publish_both.sh update for 4.5.1
* Update CHANGELOG.md
* docs: updated changelog
* packaging: reducing package size be only including public vendor stuff we need
* docs: update download links
* allow ssl renegotiation for datasources
* check args for query
* add test for completer
* fix
* follow token name change
* (prometheus) support label value completion
* (prometheus) support label name completion
* get s3 url via aws-sdk-go, fix #9189
* Prometheus: Rework the interaction between auto interval (computed based on graph resolution), min interval (where specified, per query) and intervalFactor (AKA resolution, where specified, per query). As a bonus, have and reflect the actual interval (not the auto interval), taking into account min interval and Prometheus' 11k data points limit.
* minor fix
* (prometheus) support instant query for table format, use checkbox to switch query type
* (prometheus) instant query support
* Add thumbnail to card
* Add values to the hipchat card
* Reorder editorconfig
* Enable datasources to be able to round off to a UTC day properly
* Include triggering metrics to pagerduty alerts
novnc was updated to fix the following issue:
- Add tightPNG encoding (bsc#1145796)
This encoding is needed to allow noVNC to work with instances that
run on ESX hypervisors. It is not possible to update the Newton package
to noVNC 1.1.0 as that version is not supported with openstack-nova until Rocky.
openstack-keystone was updated to fix:
- A domain_admin should be allowed to list role assignments for the
domain and for all projects of this domain with a domain-scoped token.
(bsc#1118159)
openstack-neutron was updated to fix:
- Add path to not update device lists in large sets. (bsc#1136784)
Since the ssh timeout issue was resolved, start adding back the removed
patches. Backport based on comment #1.
- Revert OVS timeout patch as it also seams to cause CI issues. (SOC-10092)
- Since the CI failures are mostly seen in ha jobs, let us first
try to revert the last added HA related patches. Once we nail
down the issue, we can add one at a time. (SOC-10092)
- Disallow router interface out of subnet IP range (bsc#1108033)
- Fix for dhcp serializing port delete and network rpc calls (bsc#1143475)
- Fixed a function call error with get_reader_session
Fixed an argument issue with respect to Context not having 'bein'
function, we should have passed the session instead of context.
Also fixed another function argument error with respect to
'is_ha_router_port'. (bsc#1133722)
- Divide and conquer local hridge flows beasts (bsc#1133722)
- Choose random value for HA routes vr_id
- Change duplicate OVS bridge datapath ids
- Async notify neutron server for HA states
- Divide and conquer security group beasts
- Change default local ovs connection timeout (bsc#1136784)
- Do not call update device list in large sets (bsc#1136784)
- More accurate agent restart state transfer (bsc#1136784)
- OVS agent: Always send start flag during initial sync (bsc#1136784)
- Keep HA ports info for HA router during entire lifecycle
- Packets getting lost during SNAT with too many connections
- Don't restart neutron-ovs-cleanup on RPM update (bsc#1132860)
- neutron-keepalived-state-change will check VIP before spawning ip monitor (bsc#1131961)
- handle database query correctly
- Fix the update port status issue without getting the ports to BUILD status.(bsc#1131053)
- OVS Raise RuntimeError in_get_dp if id is None
- OVS Survive errors from check ovs status
- Trigger port status DOWN on VIF replug.patch
- Fix dvr ha router gateway port binding to incorrect host
- DVR HA Unbinding a HA router from agent does not clear HA interface
- Don't trigger DVR port update if status the same
- Add retry decorator update_segment_host_mapping (bsc#1127558)
- Do state report after setting start flag on OVS restart
openstack-nova was updated to fix:
Security issue fixed:
- CVE-2016-10127: Fixed XXE in XML Parsing (bsc#1019074)
- Allow to attach more than 26 volumes (bsc#1118900)
openstack-tempest was updated to fix:
- Avoid server check teardown exception breaking tearDown (SOC 10092)
python-urllib3 was updated to fix:
- Add missing dependency on python-six (bsc#1150895)
sleshammer was updated to fix:
- Really drop etc/udev/rules.d/70-persistent-net.rules from the overlay
it was still present in the tarball. (SOC-9288)
rubygem-chef was updated to fix:
- pretty print inspect results and force encode the content (SOC-9954)
- updated to version 1.0.0
- Unmerge Arrays containing Hashes
- Handle duplicate values in arrays correctly
rubygem-easy_diff was updated to version 0.0.6
- Fix merging arrays of hashes
Patchnames: SUSE-2019-2671,SUSE-OpenStack-Cloud-7-2019-2671,SUSE-Storage-4-2019-2671
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
9 (Critical)
Affected products
Recommended
73 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.2 (High)
Affected products
Recommended
73 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
73 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
Affected products
Recommended
73 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
Threats
Impact
low
7.1 (High)
Affected products
Recommended
73 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
73 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch | — |
Vendor Fix
|
Threats
Impact
important
References
57 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for crowbar-core, crowbar-openstack, grafana, novnc, openstack-keystone, openstack-neutron, openstack-neutron-lbaas, openstack-nova, openstack-tempest, python-pysaml2, python-urllib3, rubygem-chef, rubygem-easy_diff, sleshammer",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for crowbar-core, crowbar-openstack, grafana, novnc, openstack-keystone, openstack-neutron, openstack-neutron-lbaas, openstack-nova, openstack-tempest, python-pysaml2, python-urllib3, rubygem-chef, rubygem-easy_diff, sleshammer fixes the following issues:\n\nIn python-pysaml2 the following security issue was fixed:\n\n- CVE-2016-10127: Fixed an XML external entity attack. (bsc#1019074)\n\ncrowbar-core was updated to version 4.0+git.1570463621.40b11cd48:\n* network: Don\u0027t set datapath-ids on ovs-bridges anymore (bsc#1152916)\n* barclamp_lib: Sync timeout with other barclamps (SOC-10513, SOC-10011)\n* gems: Update easy_diff to 1.0.0 (SOC-10505)\n* crowbar: Do not read /etc/crowbar.install.key in non-SUSE init script\n* transition.sh: Do not read /etc/crowbar.install.key\n* gather_logs: Make it a bit useful again\n* gather_logs: Do not read /etc/crowbar.install.key\n* network: Allow locking down the network config for nodes (bsc#1120657)\n* network: Check existing upper layers before bond setup (bsc#1120657)\n* network: never plug two interface into the same ovs bridge (bsc#1120657)\n* network: Avoid plugging the same interface to two ovs bridges (bsc#1120657)\n* nic library: some helper for identifying base interface (bsc#1120657)\n* network: Rework the vlan port replugging code (bsc#1120657)\n* network: DRY out \u0027kill_nic_files\u0027 (noref)\n* Add CVE-2019-5477 the to travis ignore list (SOC-9635)\n\ncrowbar-openstack was updated to version 4.0+git.1569429513.e7016b2b6:\n* tempest: don\u0027t rely on service catalogue (SOC-10633)\n* nova: set default attribute for max_threads_per_process\n* database: Hardcode ruby version for package installation (SOC-10010)\n* neutron: restore dhcp_domain in stable/4.0 (bsc#1145867)\n* nova: add max_threads_per_process tuneable (SOC-10001, bsc#1133719)\n\ngrafana was updated to:\n\n- CVE-2019-15043: Adds authentication to a few rest endpoints that could be used to access grafana snapshot apis to cause denial of service (SOC-10357 bsc#1148383)\n Also see https://github.com/grafana/grafana/compare/v5.4.4...v5.4.5\n\n\ngrafana was updated to version 4.6.5:\n\n- CVE-2018-19039: Users with Editor or Admin permissions could exfiltrate files (jsc#SOC-9976 bsc#1115960)\n\ngrafana was updated version to 4.6.4:\n\n- CVE-2018-15727 / CVE-2018-558213: Fixed an authentication bypass because an attacker can generate a valid \u0027remember me\u0027cookie knowing only a username of an LDAP or OAuth user (jsc#SOC-9980 bsc#1106515)\n\nOther fixes:\n\n* sql: added code migration type\n* release 4.6.3\n* fix default alias\n* fixes broken alert eval when first condition is using OR\n* fix: alert list panel now works correctly after adding manual annotation on dashboard, fixes #9951\n* fix: fix for avatar images when gzip is turned on, fixes #5952\n* sets version to 4.6.2\n* prom: add support for default step param (#9866)\n* build: fixed jshint error\n* fix: Html escaping caused issue in InfluxDB query editor, could not pick greater than or less then operators, fixes #9871\n* heatmap: fix tooltip in \u0027Time series bucket\u0027 mode, #9332 (#9867)\n* fix cloudwatch ec2_instance_attribute (#9718)\n* colorpicker: fix color string change #9769 (#9780)\n* changes version to 4.6.1\n* fix: panel view now wraps, no scrolling required, fixes #9746\n* plugins: fix for loading external plugins behind auth proxy, fixes #9509\n* fix: color picker bug at series overrides page, #9715 (#9738)\n* tech: switch to golang 1.9.2\n* tech: add missing include\n* save as should only delete threshold for panels with alerts\n* fix: graphite annotation tooltip included undefined, fixes #9707\n* build: updated version to v4.6.0\n* plugins: added backward compatible path for rxjs\n* ux: updated singlestat default colors\n* prometheus: fixed unsaved changes warning when changing time range due to step option on query model was changed in datasource.query code, fixes #9675\n* fix: firefox can now create region annotations, fixes #9638\n* alerting: only editors can pause rules\n* fix: another fix for playlist view state, #9639\n* fix: fixed playlist controls and view state, fixes #9639\n* prom: adds pre built grafana dashboard\n* bump version for publish_testing.sh\n* update version to 4.6.0-beta3\n* plugins: expose dashboard impression store\n* modify $__timeGroup macro so it can be used in select clause (#9527)\n* plugins: fixes path issue on Windows\n* prometheus: enable gzip for /metrics endpoint\n* fix: fixed save to file button in export modal, fixes #9586\n* mysql: add usage stats for mysql\n* pluginloader: esModule true for systemjs config\n* Fix heatmap Y axis rendering (#9580)\n* fix vector range\n* prometheus: add builtin template variable as range vectors\n* fix: fixed prometheus step issue that caused browser crash, fixes #9575\n* fix: getting started panel and mark adding data source as done, fixes #9568\n* Fixes for annotations API (#9577)\n* bump packagecloud script\n* build: added imports of rxjs utility functions\n* prepare for v4.6.0-beta2 release\n* fix template variable expanding\n* annotations: quote reserved fields (#9550)\n* ux: align alert and btn colors\n* fix: fixed color pickers that were broken in minified builds, fixes #9549\n* textpanel: fixes #9491\n* csv: fix import for saveAs shim\n* plugins: expose more util and flot dependencies\n* alert_tab: clear test result when testing rules\n* (cloudwatch) fix cloudwatch query error over 24h (#9536)\n* show error message when cloudwatch datasource can\u0027t add\n* update packagecloud script for 4.6.0-beta1\n* changelog: adds note about closing #9516\n* alerting: add count_non_null reducer\n* Update rpm.md\n* fix: can now remove annotation tags without popover closing\n* tech: add backward compatibility for \u003cspectrum-picker\u003e directive (#9510)\n* fix: fixed links on new 404 page, fixes #9493\n* logging: dont use cli logger in http_server\n* oauth: raise error if session state is missing\n* oauth: provide more logging for failed oauth requests\n* prepare for 4.6.0-beta1 release\n* docs: updated whats new article\n* docs: initial draft release v46\n* graph: fix y-axis decimalTick check. Fixes #9405\n* minor docs update\n* docs: annotation docs update\n* changelog: adds note about closing #7104\n* changelog: adds note about closing #9373\n* metrics: disable gzip for /metrics endpoint (#9468)\n* Annotation docs (#9506)\n* Update CHANGELOG.md\n* Update PLUGIN_DEV.md\n* Update PLUGIN_DEV.md\n* Update README.md\n* Fixed link issue in CHANGELOG\n* Create PLUGIN_DEV.md\n* changelog: adds note about closing #9371,#5334,#8812\n* ds_edit: placeholder should only be cert header\n* fixed minor styling issus (#9497)\n* fix: alert api limit param did not work and caused SQL syntax error, fixes #9492\n* annotations: add endpoint for writing graphite-like events (#9495)\n* Update unsaved_changes_modal.ts\n* fix: set lastSeenAt date when creating users to then years in past insteasd of empty date, fixes #9260\n* ux: minor ux fix\n* Retain old name for TLS client auth\n* Return error if datasource TLS CA not parsed\n* Datasource settings: Make HTTP all caps\n* Datasource HTTP settings: Add TLS skip verify\n* Make URL capitalisation consistent in UI\n* Alias macron package in app_routes.go\n* Verify datasource TLS and split client auth and CA\n* Tidy spacing in datasource TLS settings\n* Tests: Clarify what InsecureSkipVerify does\n* postgres: add missing ngInject decorator\n* docs: initial docs for new annotation features, #9483\n* Adds note for #9209 to changelog\n* Postgres Data Source (#9475)\n* tech: expose more to plugins, closes #9456\n* Fix NaN handling (#9469)\n* snapshots: improve snapshot listing performance, #9314 (#9477)\n* mysql: fix interpolation for numbers in temp vars\n* Added docs for Kafka alerting\n* Fixed failing go tests\n* gofmt fixes\n* Added tests\n* Kafka REST Proxy works with Grafana\n* added insrtuctions for oauth2 okta bitbucket (#9471)\n* Unified Color picker fixes (#9466)\n* Show min interval query option for mixed datasource (#9467)\n* gzip: plugin readme content set explicitly\n* ignore pattern for vendored libs\n* fix: escape metric segment auto complete, fixes #9423\n* Corrected a PostgreSQL SELECT statement. (#9460)\n* tests: found the unhandled promise issue in the dash import tests\n* testing: fixing tests\n* annotations: minor change to default/edit annotation color\n* Create annotations (#8197)\n* OAuth: Rename sslcli\n* OAuth: Separate TLS client auth and CA config\n* OAuth: Check both TLS client cert and key\n* Always verify TLS unless explicitly told otherwise\n* fix: threshold\u0027s colors in table panels (#9445) (#9453)\n* singlestat: fix sizing bug #9337 (#9448)\n* Revert \u0027Fix coloring in singlestat if null value (#9438)\u0027 (#9443)\n* Fix coloring in singlestat if null value (#9438)\n* fix: missing semicolon\n* changed jsontree to use jsonexplorer (#9416)\n* docs page for authproxy (#9420)\n* Update codebox (#9430)\n* Series color picker fix (#9442)\n* fix type in readme\n* removed commented line\n* changelog: adds note about closing #9110\n* Fixed typo\n* Change empty string checks and improve logging\n* changelog: adds note about closing #9208\n* Fix spelling on 404 page.\n* Lint fix\n* Update kbn.js\n* Add Norwegian Krone denominator for currency\n* fixed layout for column options, changed dropdown for date format kept old code\n* build: add noUnusedLocals to tsc parameters\n* build: install go based on env variable\n* changes go version to 1.9.1\n* changelog: adds note about closing #9226\n* changelog: add note about closing #9429\n* changelog: adds note about closing #9399\n* Fix formatting issue\n* Add milliseconds format in table panel\u0027s config\n* support for s3 path (#9151)\n* Remove apparently unnecessary .flush() calls.\n* Fix empty message and toolong attribute names Use default state message if no message is provided by the user Slice attribute name to maximum of 50 chars\n* Address review comments.\n* changelog: add note about closing #7175\n* plugin_loader: expose app_events to plugins\n* Add the missing comma\n* colorpicker: refactoring the new unififed colorpicker, #9347\n* Unified colorpicker (#9347)\n* fix missing column headers in excel export (#9413)\n* build: remove clean plugin from dev build\n* build: fixed broken elastic unit test\n* shore: cleanup unused stuff in common.d.ts\n* Build URL for close alert request differently\n* some restyling (#9409)\n* Docs text fixes (#9408)\n* Checkbox fixes (#9400)\n* fix: ensure panel.datasource is null as default\n* plugibs: expose more to plugins\n* properly parse \u0026 pass upload image bool from config\n* break out slack upload into separate function\n* tech: minor npm scripts update\n* build: fixed build\n* refactoring: minor refactoring of PR #8916\n* Update script to make it use OpsGenie\u0027s REST API\n* docs: minor docs fix\n* Merge branch \u0027master\u0027 of github.com:grafana/grafana\n* build: minor webpack fix\n* docs: updated building from source docs\n* playlist: play and edit should use same width\n* shore: fixed html indentation, #9368\n* tech: updated yarn.lock\n* shore: minor cleanup\n* Webpack (#9391)\n* fixing json for CI\n* adding support for token-based slack file.upload API call for posting images to slack\n* changelog: adds note about closing #8479\n* changelog: adds note about closing #8050\n* changelog: adds note about closing #9386\n* change pdiff to percent_diff for conditions\n* panel: rename label on csv export modal\n* add diff and pdiff for conditions\n* fix, add targetContainsTemplate()\n* fix cloudwatch alert bug\n* add debug log\n* move extend statistics handling code to backend\n* fix assume role\n* improve cloudwatch tsdb\n* refactor cloudwatch code\n* remove obsolete code\n* move cloudwatch crendential related code\n* remove old handler\n* fix annotation query\n* fix time\n* fix dimension convertion\n* re-implement annotation query\n* fix parameter format\n* fix alert feature\n* fix parameter format\n* refactor cloudwatch to support new tsdb interface\n* refactor cloudwatch frontend code\n* refactor cloudwatch frontend code\n* fix test\n* re-implement dimension_values()\n* fix error message\n* remove performEC2DescribeInstances()\n* re-implement ec2_instance_attribute()\n* re-implement ebs_volume_ids()\n* import the change, https://github.com/grafana/grafana/pull/9268\n* fix conflict\n* fix test\n* remove obsolete GetMetricStatistics()\n* fix test\n* move test code\n* fix conflict\n* porting other suggestion\n* re-implement get regions\n* move the metric find query code\n* (cloudwatch) move query parameter to \u0027parameters\u0027\n* parse duration\n* remove offset for startTime\n* cache creds for keys/credentials auth type\n* fix test\n* fix invalid query filter\n* count up metrics\n* (cloudwatch) alerting\n* add brazil currency\n* tech: upgrade of systemjs to 0.20.x working\n* tech: reverted to systemjs\n* tech: migrating elasticsearch to typescript\n* changelog: add note about using golang 1.9\n* change go version to 1.9\n* changelog: adds note about closing #9367\n* tech: systemjs upgrade\n* made a text-panel page, maybe we don\u0027t need it\n* cleaned up html/sass and added final touches\n* Enable dualstack in every net.Dialer, fixes #9364\n* jaeger: capitalize tracer name\n* jaeger: logging improvement\n* tech: systemjs upgrade\n* Have include intervalFactor in its calculation, so always equal to the step query parameter.\n* alertlist: toggle play/pause button\n* updated css and html for recent state changes for alert lists\n* Fix export_modal message (#9353)\n* s3: minor fix for PR #9223\n* internal metrics: add grafana version\n* changelog: adds note about closing 5765\n* Update latest.json\n* typescript: stricter typescript option\n* prom_docker: give targets correct job name\n* testdata: add bucket scenarios for heatmap\n* dev-docker: add grafana as target\n* changelog: add note ablout closing #9319\n* introduce smtp config option for EHLO identity\n* changelog: note about closing #9250\n* go fmt\n* new page for text, needs more work\n* replaced img in graph, created alert list page\n* docs: update docs\n* Update CHANGELOG.md\n* changelog: adds note about closing #5873\n* replaced image\n* Docs new updates (#9324)\n* Update CHANGELOG.md\n* Update latest.json\n* cleanup: removed unused file\n* tech: remove bower and moved remaining bower dependencies to npm\n* tech: cleanup and fixed build issue\n* tech: upgraded angularjs and moved dependency from bower to npm, closes #9327\n* follow go idiom and return error as second param\n* tech: updated tsconfig\n* docker: adds alertmanager to prometheus fig\n* tech: more tslint rules\n* another img update\n* tech: removing unused variables from typescript files, and making tslint rules more strict\n* deleted old shortcuts instruction\n* text uppdates for dashlist and singlestat(+img). updated the keyboard shortcuts\n* context is reserved for go\u0027s context\n* make ds a param for Query\n* remove batch abstraction\n* rename executor into tsdbqueryendpoint\n* remove unused structs\n* refactor response flow\n* tech: removed test component\n* ux: minor singlestat update\n* singlestat: minor change\n* Update CHANGELOG.md\n* Singlestat time (#9298)\n* tech: progress on react poc\n* adds note about closing #9213\n* Update _navbar.scss\n* replaced images, updating text(not finished)\n* fix: close for \u0027Unsaved Changes\u0027 modal, #9284 (#9313)\n* Initial graphite tags support (#9239)\n* tech: initial react poc\n* Make details more clean in PD description\n* bug: enable HEAD requests again\n* Add `DbClusterIdentifier` to CloudWatch dimensions (#9297)\n* templating: fix dependent variable updating (#9306)\n* Fix adhoc filters restoration (#9303)\n* Explicitly refer to Github \u0027OAuth\u0027 applications\n* config bucket and region for s3 uploader\n* fixes bug introduced with prom namespaces\n* fixing spelling of millesecond -\u003e millisecond\n* fixing spelling of millesecond -\u003e millisecond\n* Remove duplicate bus.AddHandler() (#9289)\n* Update CHANGELOG.md\n* use same key as mt\n* tag alert queries that return no_data\n* updated error page html+css, added ds_store to ignore (#9285)\n* public/app/plugins/panel/graph/specs/graph_specs.ts: relax tests to be \u0027within\u0027 instead of \u0027equal\u0027, so they won\u0027t fail on i686 (#9286)\n* Fix path to icon (#9276)\n* adds note about fix in v4.5.2\n* skip NaN values when writing to graphite\n* addded mass units, #9265 (#9273)\n* Fully fill out nulls in cloudfront data source (#9268)\n* make it possible to configure sampler type\n* mark \u003e=400 responses as error\n* change port for jaeger dev container\n* logwrapper for jaeger\n* make samplerconfig.param configurable\n* adds custom tags from settings\n* use route as span name\n* add trace headers for outgoing requests\n* docker file for running jaeger\n* better formating for error trace\n* attach context with span to *http.Request\n* add traces for datasource reverse proxy requests\n* trace failed executions\n* use tags instead of logs\n* use opentracing ext package when possible\n* set example port to zipkin default\n* adds codahale to vendor\n* makes jaeger tracing configurable\n* add trace parameters for outgoing requests\n* adds basic traces using open traces\n* require dashboard panels to have id\n* fix: jsonData should not be allowed to be null, fixes #9258\n* packaging: reduce package size\n* Update upgrading.md (#9263)\n* Added --pluginUrl option to grafana-cli for local network plugin installation\n* adds note about closing #1395\n* add locale format\n* update changelog\n* fixes broken tests :boom:\n* minor code adjusetments\n* pass context to image uploaders\n* remove unused deps\n* Reduced OAuth scope to read_write\n* GCS support via JSON API\n* gofmt fixes\n* Added GCS support #8370\n* move more known datasources from others\n* Remove alert thresholds on panel duplicate, issue #9178 (#9257)\n* 4.5.1 docs + update version to 5.0.0-pre1\n* publish_both.sh update for 4.5.1\n* Update CHANGELOG.md\n* docs: updated changelog\n* packaging: reducing package size be only including public vendor stuff we need\n* docs: update download links\n* allow ssl renegotiation for datasources\n* check args for query\n* add test for completer\n* fix\n* follow token name change\n* (prometheus) support label value completion\n* (prometheus) support label name completion\n* get s3 url via aws-sdk-go, fix #9189\n* Prometheus: Rework the interaction between auto interval (computed based on graph resolution), min interval (where specified, per query) and intervalFactor (AKA resolution, where specified, per query). As a bonus, have and reflect the actual interval (not the auto interval), taking into account min interval and Prometheus\u0027 11k data points limit.\n* minor fix\n* (prometheus) support instant query for table format, use checkbox to switch query type\n* (prometheus) instant query support\n* Add thumbnail to card\n* Add values to the hipchat card\n* Reorder editorconfig\n* Enable datasources to be able to round off to a UTC day properly\n* Include triggering metrics to pagerduty alerts\n\nnovnc was updated to fix the following issue:\n\n- Add tightPNG encoding (bsc#1145796)\n This encoding is needed to allow noVNC to work with instances that\n run on ESX hypervisors. It is not possible to update the Newton package\n to noVNC 1.1.0 as that version is not supported with openstack-nova until Rocky.\n\nopenstack-keystone was updated to fix:\n\n- A domain_admin should be allowed to list role assignments for the\n domain and for all projects of this domain with a domain-scoped token.\n (bsc#1118159)\n\nopenstack-neutron was updated to fix:\n- Add path to not update device lists in large sets. (bsc#1136784)\n Since the ssh timeout issue was resolved, start adding back the removed\n patches. Backport based on comment #1.\n- Revert OVS timeout patch as it also seams to cause CI issues. (SOC-10092)\n- Since the CI failures are mostly seen in ha jobs, let us first\n try to revert the last added HA related patches. Once we nail\n down the issue, we can add one at a time. (SOC-10092)\n- Disallow router interface out of subnet IP range (bsc#1108033)\n- Fix for dhcp serializing port delete and network rpc calls (bsc#1143475)\n- Fixed a function call error with get_reader_session\n Fixed an argument issue with respect to Context not having \u0027bein\u0027\n function, we should have passed the session instead of context.\n Also fixed another function argument error with respect to\n \u0027is_ha_router_port\u0027. (bsc#1133722)\n- Divide and conquer local hridge flows beasts (bsc#1133722) \n- Choose random value for HA routes vr_id\n- Change duplicate OVS bridge datapath ids\n- Async notify neutron server for HA states\n- Divide and conquer security group beasts\n- Change default local ovs connection timeout (bsc#1136784)\n- Do not call update device list in large sets (bsc#1136784)\n- More accurate agent restart state transfer (bsc#1136784)\n- OVS agent: Always send start flag during initial sync (bsc#1136784)\n- Keep HA ports info for HA router during entire lifecycle\n- Packets getting lost during SNAT with too many connections\n- Don\u0027t restart neutron-ovs-cleanup on RPM update (bsc#1132860)\n- neutron-keepalived-state-change will check VIP before spawning ip monitor (bsc#1131961)\n- handle database query correctly\n- Fix the update port status issue without getting the ports to BUILD status.(bsc#1131053)\n\n- OVS Raise RuntimeError in_get_dp if id is None\n- OVS Survive errors from check ovs status\n- Trigger port status DOWN on VIF replug.patch\n- Fix dvr ha router gateway port binding to incorrect host\n- DVR HA Unbinding a HA router from agent does not clear HA interface\n- Don\u0027t trigger DVR port update if status the same\n- Add retry decorator update_segment_host_mapping (bsc#1127558)\n- Do state report after setting start flag on OVS restart\n\nopenstack-nova was updated to fix:\n\nSecurity issue fixed:\n\n- CVE-2016-10127: Fixed XXE in XML Parsing (bsc#1019074)\n\n- Allow to attach more than 26 volumes (bsc#1118900)\n\nopenstack-tempest was updated to fix:\n\n- Avoid server check teardown exception breaking tearDown (SOC 10092)\n\npython-urllib3 was updated to fix:\n\n- Add missing dependency on python-six (bsc#1150895)\n\nsleshammer was updated to fix:\n\n- Really drop etc/udev/rules.d/70-persistent-net.rules from the overlay\n it was still present in the tarball. (SOC-9288)\n\nrubygem-chef was updated to fix:\n\n- pretty print inspect results and force encode the content (SOC-9954)\n\n- updated to version 1.0.0\n\n - Unmerge Arrays containing Hashes\n - Handle duplicate values in arrays correctly\n\nrubygem-easy_diff was updated to version 0.0.6\n\n- Fix merging arrays of hashes\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-2671,SUSE-OpenStack-Cloud-7-2019-2671,SUSE-Storage-4-2019-2671",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_2671-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:2671-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192671-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:2671-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-October/006017.html"
},
{
"category": "self",
"summary": "SUSE Bug 1019074",
"url": "https://bugzilla.suse.com/1019074"
},
{
"category": "self",
"summary": "SUSE Bug 1052286",
"url": "https://bugzilla.suse.com/1052286"
},
{
"category": "self",
"summary": "SUSE Bug 1106515",
"url": "https://bugzilla.suse.com/1106515"
},
{
"category": "self",
"summary": "SUSE Bug 1108033",
"url": "https://bugzilla.suse.com/1108033"
},
{
"category": "self",
"summary": "SUSE Bug 1115960",
"url": "https://bugzilla.suse.com/1115960"
},
{
"category": "self",
"summary": "SUSE Bug 1118159",
"url": "https://bugzilla.suse.com/1118159"
},
{
"category": "self",
"summary": "SUSE Bug 1118900",
"url": "https://bugzilla.suse.com/1118900"
},
{
"category": "self",
"summary": "SUSE Bug 1120657",
"url": "https://bugzilla.suse.com/1120657"
},
{
"category": "self",
"summary": "SUSE Bug 1127558",
"url": "https://bugzilla.suse.com/1127558"
},
{
"category": "self",
"summary": "SUSE Bug 1128954",
"url": "https://bugzilla.suse.com/1128954"
},
{
"category": "self",
"summary": "SUSE Bug 1128987",
"url": "https://bugzilla.suse.com/1128987"
},
{
"category": "self",
"summary": "SUSE Bug 1131053",
"url": "https://bugzilla.suse.com/1131053"
},
{
"category": "self",
"summary": "SUSE Bug 1131961",
"url": "https://bugzilla.suse.com/1131961"
},
{
"category": "self",
"summary": "SUSE Bug 1132860",
"url": "https://bugzilla.suse.com/1132860"
},
{
"category": "self",
"summary": "SUSE Bug 1133719",
"url": "https://bugzilla.suse.com/1133719"
},
{
"category": "self",
"summary": "SUSE Bug 1133722",
"url": "https://bugzilla.suse.com/1133722"
},
{
"category": "self",
"summary": "SUSE Bug 1136784",
"url": "https://bugzilla.suse.com/1136784"
},
{
"category": "self",
"summary": "SUSE Bug 1143475",
"url": "https://bugzilla.suse.com/1143475"
},
{
"category": "self",
"summary": "SUSE Bug 1145796",
"url": "https://bugzilla.suse.com/1145796"
},
{
"category": "self",
"summary": "SUSE Bug 1145867",
"url": "https://bugzilla.suse.com/1145867"
},
{
"category": "self",
"summary": "SUSE Bug 1148383",
"url": "https://bugzilla.suse.com/1148383"
},
{
"category": "self",
"summary": "SUSE Bug 1150895",
"url": "https://bugzilla.suse.com/1150895"
},
{
"category": "self",
"summary": "SUSE Bug 1152916",
"url": "https://bugzilla.suse.com/1152916"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-10127 page",
"url": "https://www.suse.com/security/cve/CVE-2016-10127/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-15727 page",
"url": "https://www.suse.com/security/cve/CVE-2018-15727/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-19039 page",
"url": "https://www.suse.com/security/cve/CVE-2018-19039/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-558213 page",
"url": "https://www.suse.com/security/cve/CVE-2018-558213/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-15043 page",
"url": "https://www.suse.com/security/cve/CVE-2019-15043/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-5477 page",
"url": "https://www.suse.com/security/cve/CVE-2019-5477/"
},
{
"category": "self",
"summary": "SUSE Bug SOC-10001",
"url": "https://bugzilla.suse.com/SOC-10001"
},
{
"category": "self",
"summary": "SUSE Bug SOC-10010",
"url": "https://bugzilla.suse.com/SOC-10010"
},
{
"category": "self",
"summary": "SUSE Bug SOC-10011",
"url": "https://bugzilla.suse.com/SOC-10011"
},
{
"category": "self",
"summary": "SUSE Bug SOC-10092",
"url": "https://bugzilla.suse.com/SOC-10092"
},
{
"category": "self",
"summary": "SUSE Bug SOC-10357",
"url": "https://bugzilla.suse.com/SOC-10357"
},
{
"category": "self",
"summary": "SUSE Bug SOC-10505",
"url": "https://bugzilla.suse.com/SOC-10505"
},
{
"category": "self",
"summary": "SUSE Bug SOC-10513",
"url": "https://bugzilla.suse.com/SOC-10513"
},
{
"category": "self",
"summary": "SUSE Bug SOC-10633",
"url": "https://bugzilla.suse.com/SOC-10633"
},
{
"category": "self",
"summary": "SUSE Bug SOC-9288",
"url": "https://bugzilla.suse.com/SOC-9288"
},
{
"category": "self",
"summary": "SUSE Bug SOC-9635",
"url": "https://bugzilla.suse.com/SOC-9635"
},
{
"category": "self",
"summary": "SUSE Bug SOC-9954",
"url": "https://bugzilla.suse.com/SOC-9954"
},
{
"category": "self",
"summary": "SUSE Bug SOC-9976",
"url": "https://bugzilla.suse.com/SOC-9976"
},
{
"category": "self",
"summary": "SUSE Bug SOC-9980",
"url": "https://bugzilla.suse.com/SOC-9980"
}
],
"title": "Security update for crowbar-core, crowbar-openstack, grafana, novnc, openstack-keystone, openstack-neutron, openstack-neutron-lbaas, openstack-nova, openstack-tempest, python-pysaml2, python-urllib3, rubygem-chef, rubygem-easy_diff, sleshammer",
"tracking": {
"current_release_date": "2019-10-15T12:46:16Z",
"generator": {
"date": "2019-10-15T12:46:16Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:2671-1",
"initial_release_date": "2019-10-15T12:46:16Z",
"revision_history": [
{
"date": "2019-10-15T12:46:16Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"product": {
"name": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"product_id": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"product": {
"name": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"product_id": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "crowbar-core-devel-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"product": {
"name": "crowbar-core-devel-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"product_id": "crowbar-core-devel-4.0+git.1570463621.40b11cd48-9.54.1.aarch64"
}
},
{
"category": "product_version",
"name": "grafana-4.6.5-1.11.2.aarch64",
"product": {
"name": "grafana-4.6.5-1.11.2.aarch64",
"product_id": "grafana-4.6.5-1.11.2.aarch64"
}
},
{
"category": "product_version",
"name": "novnc-1.0.0-12.1.aarch64",
"product": {
"name": "novnc-1.0.0-12.1.aarch64",
"product_id": "novnc-1.0.0-12.1.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"product": {
"name": "ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"product_id": "ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-chef-testsuite-10.32.2-5.12.1.aarch64",
"product": {
"name": "ruby2.1-rubygem-chef-testsuite-10.32.2-5.12.1.aarch64",
"product_id": "ruby2.1-rubygem-chef-testsuite-10.32.2-5.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"product": {
"name": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"product_id": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-easy_diff-doc-1.0.0-3.3.1.aarch64",
"product": {
"name": "ruby2.1-rubygem-easy_diff-doc-1.0.0-3.3.1.aarch64",
"product_id": "ruby2.1-rubygem-easy_diff-doc-1.0.0-3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-easy_diff-testsuite-1.0.0-3.3.1.aarch64",
"product": {
"name": "ruby2.1-rubygem-easy_diff-testsuite-1.0.0-3.3.1.aarch64",
"product_id": "ruby2.1-rubygem-easy_diff-testsuite-1.0.0-3.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "rubygem-chef-10.32.2-5.12.1.aarch64",
"product": {
"name": "rubygem-chef-10.32.2-5.12.1.aarch64",
"product_id": "rubygem-chef-10.32.2-5.12.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"product": {
"name": "crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"product_id": "crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"product": {
"name": "openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"product_id": "openstack-keystone-10.0.3~dev9-7.18.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"product": {
"name": "openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"product_id": "openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-keystone-test-10.0.3~dev9-7.18.2.noarch",
"product": {
"name": "openstack-keystone-test-10.0.3~dev9-7.18.2.noarch",
"product_id": "openstack-keystone-test-10.0.3~dev9-7.18.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"product": {
"name": "openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"product_id": "openstack-neutron-9.4.2~dev21-7.32.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"product": {
"name": "openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"product_id": "openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"product": {
"name": "openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"product_id": "openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"product": {
"name": "openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"product_id": "openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"product": {
"name": "openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"product_id": "openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"product": {
"name": "openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"product_id": "openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"product": {
"name": "openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"product_id": "openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"product": {
"name": "openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"product_id": "openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"product": {
"name": "openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"product_id": "openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"product": {
"name": "openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"product_id": "openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"product": {
"name": "openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"product_id": "openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"product": {
"name": "openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"product_id": "openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"product": {
"name": "openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"product_id": "openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"product": {
"name": "openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"product_id": "openstack-neutron-server-9.4.2~dev21-7.32.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-neutron-test-9.4.2~dev21-7.32.1.noarch",
"product": {
"name": "openstack-neutron-test-9.4.2~dev21-7.32.1.noarch",
"product_id": "openstack-neutron-test-9.4.2~dev21-7.32.1.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-api-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-cells-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-cert-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-compute-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-console-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"product": {
"name": "openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"product_id": "openstack-nova-doc-14.0.11~dev13-4.34.2.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-network-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-network-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-network-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-test-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-test-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-test-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"product": {
"name": "openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"product_id": "openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"product": {
"name": "openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"product_id": "openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch"
}
},
{
"category": "product_version",
"name": "openstack-xen-plugins-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "openstack-xen-plugins-14.0.11~dev13-4.34.3.noarch",
"product_id": "openstack-xen-plugins-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "python-keystone-10.0.3~dev9-7.18.2.noarch",
"product": {
"name": "python-keystone-10.0.3~dev9-7.18.2.noarch",
"product_id": "python-keystone-10.0.3~dev9-7.18.2.noarch"
}
},
{
"category": "product_version",
"name": "python-neutron-9.4.2~dev21-7.32.1.noarch",
"product": {
"name": "python-neutron-9.4.2~dev21-7.32.1.noarch",
"product_id": "python-neutron-9.4.2~dev21-7.32.1.noarch"
}
},
{
"category": "product_version",
"name": "python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"product": {
"name": "python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"product_id": "python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch"
}
},
{
"category": "product_version",
"name": "python-nova-14.0.11~dev13-4.34.3.noarch",
"product": {
"name": "python-nova-14.0.11~dev13-4.34.3.noarch",
"product_id": "python-nova-14.0.11~dev13-4.34.3.noarch"
}
},
{
"category": "product_version",
"name": "python-pysaml2-4.0.2-3.11.3.noarch",
"product": {
"name": "python-pysaml2-4.0.2-3.11.3.noarch",
"product_id": "python-pysaml2-4.0.2-3.11.3.noarch"
}
},
{
"category": "product_version",
"name": "python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"product": {
"name": "python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"product_id": "python-tempest-12.2.1~a0~dev177-4.6.3.noarch"
}
},
{
"category": "product_version",
"name": "python-urllib3-1.16-3.9.2.noarch",
"product": {
"name": "python-urllib3-1.16-3.9.2.noarch",
"product_id": "python-urllib3-1.16-3.9.2.noarch"
}
},
{
"category": "product_version",
"name": "sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"product": {
"name": "sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"product_id": "sleshammer-aarch64-0.7.0-0.18.12.3.noarch"
}
},
{
"category": "product_version",
"name": "sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"product": {
"name": "sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"product_id": "sleshammer-ppc64le-0.7.0-0.18.12.3.noarch"
}
},
{
"category": "product_version",
"name": "sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"product": {
"name": "sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"product_id": "sleshammer-s390x-0.7.0-0.18.12.3.noarch"
}
},
{
"category": "product_version",
"name": "sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"product": {
"name": "sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"product_id": "sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.ppc64le",
"product": {
"name": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.ppc64le",
"product_id": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.ppc64le",
"product": {
"name": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.ppc64le",
"product_id": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "crowbar-core-devel-4.0+git.1570463621.40b11cd48-9.54.1.ppc64le",
"product": {
"name": "crowbar-core-devel-4.0+git.1570463621.40b11cd48-9.54.1.ppc64le",
"product_id": "crowbar-core-devel-4.0+git.1570463621.40b11cd48-9.54.1.ppc64le"
}
},
{
"category": "product_version",
"name": "grafana-4.6.5-1.11.2.ppc64le",
"product": {
"name": "grafana-4.6.5-1.11.2.ppc64le",
"product_id": "grafana-4.6.5-1.11.2.ppc64le"
}
},
{
"category": "product_version",
"name": "novnc-1.0.0-12.1.ppc64le",
"product": {
"name": "novnc-1.0.0-12.1.ppc64le",
"product_id": "novnc-1.0.0-12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-chef-10.32.2-5.12.1.ppc64le",
"product": {
"name": "ruby2.1-rubygem-chef-10.32.2-5.12.1.ppc64le",
"product_id": "ruby2.1-rubygem-chef-10.32.2-5.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-chef-testsuite-10.32.2-5.12.1.ppc64le",
"product": {
"name": "ruby2.1-rubygem-chef-testsuite-10.32.2-5.12.1.ppc64le",
"product_id": "ruby2.1-rubygem-chef-testsuite-10.32.2-5.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.ppc64le",
"product": {
"name": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.ppc64le",
"product_id": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-easy_diff-doc-1.0.0-3.3.1.ppc64le",
"product": {
"name": "ruby2.1-rubygem-easy_diff-doc-1.0.0-3.3.1.ppc64le",
"product_id": "ruby2.1-rubygem-easy_diff-doc-1.0.0-3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-easy_diff-testsuite-1.0.0-3.3.1.ppc64le",
"product": {
"name": "ruby2.1-rubygem-easy_diff-testsuite-1.0.0-3.3.1.ppc64le",
"product_id": "ruby2.1-rubygem-easy_diff-testsuite-1.0.0-3.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "rubygem-chef-10.32.2-5.12.1.ppc64le",
"product": {
"name": "rubygem-chef-10.32.2-5.12.1.ppc64le",
"product_id": "rubygem-chef-10.32.2-5.12.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"product": {
"name": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"product_id": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x"
}
},
{
"category": "product_version",
"name": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"product": {
"name": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"product_id": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x"
}
},
{
"category": "product_version",
"name": "crowbar-core-devel-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"product": {
"name": "crowbar-core-devel-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"product_id": "crowbar-core-devel-4.0+git.1570463621.40b11cd48-9.54.1.s390x"
}
},
{
"category": "product_version",
"name": "grafana-4.6.5-1.11.2.s390x",
"product": {
"name": "grafana-4.6.5-1.11.2.s390x",
"product_id": "grafana-4.6.5-1.11.2.s390x"
}
},
{
"category": "product_version",
"name": "novnc-1.0.0-12.1.s390x",
"product": {
"name": "novnc-1.0.0-12.1.s390x",
"product_id": "novnc-1.0.0-12.1.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"product": {
"name": "ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"product_id": "ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-chef-testsuite-10.32.2-5.12.1.s390x",
"product": {
"name": "ruby2.1-rubygem-chef-testsuite-10.32.2-5.12.1.s390x",
"product_id": "ruby2.1-rubygem-chef-testsuite-10.32.2-5.12.1.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"product": {
"name": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"product_id": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-easy_diff-doc-1.0.0-3.3.1.s390x",
"product": {
"name": "ruby2.1-rubygem-easy_diff-doc-1.0.0-3.3.1.s390x",
"product_id": "ruby2.1-rubygem-easy_diff-doc-1.0.0-3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-easy_diff-testsuite-1.0.0-3.3.1.s390x",
"product": {
"name": "ruby2.1-rubygem-easy_diff-testsuite-1.0.0-3.3.1.s390x",
"product_id": "ruby2.1-rubygem-easy_diff-testsuite-1.0.0-3.3.1.s390x"
}
},
{
"category": "product_version",
"name": "rubygem-chef-10.32.2-5.12.1.s390x",
"product": {
"name": "rubygem-chef-10.32.2-5.12.1.s390x",
"product_id": "rubygem-chef-10.32.2-5.12.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"product": {
"name": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"product_id": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"product": {
"name": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"product_id": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "crowbar-core-devel-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"product": {
"name": "crowbar-core-devel-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"product_id": "crowbar-core-devel-4.0+git.1570463621.40b11cd48-9.54.1.x86_64"
}
},
{
"category": "product_version",
"name": "grafana-4.6.5-1.11.2.x86_64",
"product": {
"name": "grafana-4.6.5-1.11.2.x86_64",
"product_id": "grafana-4.6.5-1.11.2.x86_64"
}
},
{
"category": "product_version",
"name": "novnc-1.0.0-12.1.x86_64",
"product": {
"name": "novnc-1.0.0-12.1.x86_64",
"product_id": "novnc-1.0.0-12.1.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"product": {
"name": "ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"product_id": "ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-chef-testsuite-10.32.2-5.12.1.x86_64",
"product": {
"name": "ruby2.1-rubygem-chef-testsuite-10.32.2-5.12.1.x86_64",
"product_id": "ruby2.1-rubygem-chef-testsuite-10.32.2-5.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"product": {
"name": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"product_id": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-easy_diff-doc-1.0.0-3.3.1.x86_64",
"product": {
"name": "ruby2.1-rubygem-easy_diff-doc-1.0.0-3.3.1.x86_64",
"product_id": "ruby2.1-rubygem-easy_diff-doc-1.0.0-3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-rubygem-easy_diff-testsuite-1.0.0-3.3.1.x86_64",
"product": {
"name": "ruby2.1-rubygem-easy_diff-testsuite-1.0.0-3.3.1.x86_64",
"product_id": "ruby2.1-rubygem-easy_diff-testsuite-1.0.0-3.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "rubygem-chef-10.32.2-5.12.1.x86_64",
"product": {
"name": "rubygem-chef-10.32.2-5.12.1.x86_64",
"product_id": "rubygem-chef-10.32.2-5.12.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 7",
"product": {
"name": "SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:7"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 4",
"product": {
"name": "SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64"
},
"product_reference": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x"
},
"product_reference": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64"
},
"product_reference": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64"
},
"product_reference": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x"
},
"product_reference": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64"
},
"product_reference": "crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch"
},
"product_reference": "crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "grafana-4.6.5-1.11.2.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64"
},
"product_reference": "grafana-4.6.5-1.11.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "novnc-1.0.0-12.1.aarch64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64"
},
"product_reference": "novnc-1.0.0-12.1.aarch64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "novnc-1.0.0-12.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x"
},
"product_reference": "novnc-1.0.0-12.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "novnc-1.0.0-12.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64"
},
"product_reference": "novnc-1.0.0-12.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-keystone-10.0.3~dev9-7.18.2.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch"
},
"product_reference": "openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch"
},
"product_reference": "openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-9.4.2~dev21-7.32.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch"
},
"product_reference": "openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch"
},
"product_reference": "openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch"
},
"product_reference": "openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch"
},
"product_reference": "openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch"
},
"product_reference": "openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch"
},
"product_reference": "openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch"
},
"product_reference": "openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch"
},
"product_reference": "openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch"
},
"product_reference": "openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch"
},
"product_reference": "openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch"
},
"product_reference": "openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch"
},
"product_reference": "openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch"
},
"product_reference": "openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-neutron-server-9.4.2~dev21-7.32.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch"
},
"product_reference": "openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "openstack-nova-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-api-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cells-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-cert-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-compute-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-console-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-doc-14.0.11~dev13-4.34.2.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch"
},
"product_reference": "openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch"
},
"product_reference": "openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch"
},
"product_reference": "openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-keystone-10.0.3~dev9-7.18.2.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch"
},
"product_reference": "python-keystone-10.0.3~dev9-7.18.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-9.4.2~dev21-7.32.1.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch"
},
"product_reference": "python-neutron-9.4.2~dev21-7.32.1.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch"
},
"product_reference": "python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-nova-14.0.11~dev13-4.34.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch"
},
"product_reference": "python-nova-14.0.11~dev13-4.34.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pysaml2-4.0.2-3.11.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch"
},
"product_reference": "python-pysaml2-4.0.2-3.11.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-tempest-12.2.1~a0~dev177-4.6.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch"
},
"product_reference": "python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-urllib3-1.16-3.9.2.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch"
},
"product_reference": "python-urllib3-1.16-3.9.2.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64"
},
"product_reference": "ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x"
},
"product_reference": "ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64"
},
"product_reference": "ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64"
},
"product_reference": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x"
},
"product_reference": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64"
},
"product_reference": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-chef-10.32.2-5.12.1.aarch64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64"
},
"product_reference": "rubygem-chef-10.32.2-5.12.1.aarch64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-chef-10.32.2-5.12.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x"
},
"product_reference": "rubygem-chef-10.32.2-5.12.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-chef-10.32.2-5.12.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64"
},
"product_reference": "rubygem-chef-10.32.2-5.12.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sleshammer-aarch64-0.7.0-0.18.12.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch"
},
"product_reference": "sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sleshammer-ppc64le-0.7.0-0.18.12.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch"
},
"product_reference": "sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sleshammer-s390x-0.7.0-0.18.12.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch"
},
"product_reference": "sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sleshammer-x86_64-0.7.0-0.18.12.3.noarch as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
},
"product_reference": "sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64 as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64"
},
"product_reference": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64 as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64"
},
"product_reference": "crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64 as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64"
},
"product_reference": "ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64 as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64"
},
"product_reference": "ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64 as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64"
},
"product_reference": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64 as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64"
},
"product_reference": "ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-chef-10.32.2-5.12.1.aarch64 as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64"
},
"product_reference": "rubygem-chef-10.32.2-5.12.1.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-chef-10.32.2-5.12.1.x86_64 as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64"
},
"product_reference": "rubygem-chef-10.32.2-5.12.1.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sleshammer-aarch64-0.7.0-0.18.12.3.noarch as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch"
},
"product_reference": "sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sleshammer-x86_64-0.7.0-0.18.12.3.noarch as component of SUSE Enterprise Storage 4",
"product_id": "SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
},
"product_reference": "sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"relates_to_product_reference": "SUSE Enterprise Storage 4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-10127",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-10127"
}
],
"notes": [
{
"category": "general",
"text": "PySAML2 allows remote attackers to conduct XML external entity (XXE) attacks via a crafted SAML XML request or response.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-10127",
"url": "https://www.suse.com/security/cve/CVE-2016-10127"
},
{
"category": "external",
"summary": "SUSE Bug 1019074 for CVE-2016-10127",
"url": "https://bugzilla.suse.com/1019074"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-15T12:46:16Z",
"details": "important"
}
],
"title": "CVE-2016-10127"
},
{
"cve": "CVE-2018-15727",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-15727"
}
],
"notes": [
{
"category": "general",
"text": "Grafana 2.x, 3.x, and 4.x before 4.6.4 and 5.x before 5.2.3 allows authentication bypass because an attacker can generate a valid \"remember me\" cookie knowing only a username of an LDAP or OAuth user.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-15727",
"url": "https://www.suse.com/security/cve/CVE-2018-15727"
},
{
"category": "external",
"summary": "SUSE Bug 1106515 for CVE-2018-15727",
"url": "https://bugzilla.suse.com/1106515"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
"version": "3.0"
},
"products": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-15T12:46:16Z",
"details": "important"
}
],
"title": "CVE-2018-15727"
},
{
"cve": "CVE-2018-19039",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-19039"
}
],
"notes": [
{
"category": "general",
"text": "Grafana before 4.6.5 and 5.x before 5.3.3 allows remote authenticated users to read arbitrary files by leveraging Editor or Admin permissions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-19039",
"url": "https://www.suse.com/security/cve/CVE-2018-19039"
},
{
"category": "external",
"summary": "SUSE Bug 1115960 for CVE-2018-19039",
"url": "https://bugzilla.suse.com/1115960"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-15T12:46:16Z",
"details": "moderate"
}
],
"title": "CVE-2018-19039"
},
{
"cve": "CVE-2018-558213",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-558213"
}
],
"notes": [
{
"category": "general",
"text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2018-15727. Reason: This candidate is a reservation duplicate of CVE-2018-15727. Notes: All CVE users should reference CVE-2018-15727 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-558213",
"url": "https://www.suse.com/security/cve/CVE-2018-558213"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-15T12:46:16Z",
"details": "low"
}
],
"title": "CVE-2018-558213"
},
{
"cve": "CVE-2019-15043",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-15043"
}
],
"notes": [
{
"category": "general",
"text": "In Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes it possible to run a denial of service attack against the server running Grafana.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-15043",
"url": "https://www.suse.com/security/cve/CVE-2019-15043"
},
{
"category": "external",
"summary": "SUSE Bug 1148383 for CVE-2019-15043",
"url": "https://bugzilla.suse.com/1148383"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-15T12:46:16Z",
"details": "important"
}
],
"title": "CVE-2019-15043"
},
{
"cve": "CVE-2019-5477",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-5477"
}
],
"notes": [
{
"category": "general",
"text": "A command injection vulnerability in Nokogiri v1.10.3 and earlier allows commands to be executed in a subprocess via Ruby\u0027s `Kernel.open` method. Processes are vulnerable only if the undocumented method `Nokogiri::CSS::Tokenizer#load_file` is being called with unsafe user input as the filename. This vulnerability appears in code generated by the Rexical gem versions v1.0.6 and earlier. Rexical is used by Nokogiri to generate lexical scanner code for parsing CSS queries. The underlying vulnerability was addressed in Rexical v1.0.7 and Nokogiri upgraded to this version of Rexical in Nokogiri v1.10.4.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-5477",
"url": "https://www.suse.com/security/cve/CVE-2019-5477"
},
{
"category": "external",
"summary": "SUSE Bug 1146578 for CVE-2019-5477",
"url": "https://bugzilla.suse.com/1146578"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE Enterprise Storage 4:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE Enterprise Storage 4:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE Enterprise Storage 4:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE Enterprise Storage 4:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE Enterprise Storage 4:sleshammer-x86_64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.aarch64",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.s390x",
"SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1570463621.40b11cd48-9.54.1.x86_64",
"SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1569429513.e7016b2b6-9.59.1.noarch",
"SUSE OpenStack Cloud 7:grafana-4.6.5-1.11.2.x86_64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.aarch64",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.s390x",
"SUSE OpenStack Cloud 7:novnc-1.0.0-12.1.x86_64",
"SUSE OpenStack Cloud 7:openstack-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-keystone-doc-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-dhcp-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-doc-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-ha-tool-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-l3-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-agent-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-lbaas-doc-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-linuxbridge-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-macvtap-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metadata-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-metering-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-openvswitch-agent-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-neutron-server-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cells-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-cert-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-compute-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-conductor-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-console-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-consoleauth-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-doc-14.0.11~dev13-4.34.2.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-novncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-placement-api-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-scheduler-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-serialproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-nova-vncproxy-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:openstack-tempest-test-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-keystone-10.0.3~dev9-7.18.2.noarch",
"SUSE OpenStack Cloud 7:python-neutron-9.4.2~dev21-7.32.1.noarch",
"SUSE OpenStack Cloud 7:python-neutron-lbaas-9.2.2~dev11-4.18.3.noarch",
"SUSE OpenStack Cloud 7:python-nova-14.0.11~dev13-4.34.3.noarch",
"SUSE OpenStack Cloud 7:python-pysaml2-4.0.2-3.11.3.noarch",
"SUSE OpenStack Cloud 7:python-tempest-12.2.1~a0~dev177-4.6.3.noarch",
"SUSE OpenStack Cloud 7:python-urllib3-1.16-3.9.2.noarch",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.aarch64",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-rubygem-easy_diff-1.0.0-3.3.1.x86_64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.aarch64",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.s390x",
"SUSE OpenStack Cloud 7:rubygem-chef-10.32.2-5.12.1.x86_64",
"SUSE OpenStack Cloud 7:sleshammer-aarch64-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-ppc64le-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-s390x-0.7.0-0.18.12.3.noarch",
"SUSE OpenStack Cloud 7:sleshammer-x86_64-0.7.0-0.18.12.3.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-10-15T12:46:16Z",
"details": "important"
}
],
"title": "CVE-2019-5477"
}
]
}
SUSE-RU-2020:2072-1
Vulnerability from csaf_suse - Published: 2020-07-29 14:31 - Updated: 2020-07-29 14:31Summary
Security update for ansible, crowbar-core, crowbar-ha, crowbar-openstack, etcd, flannel, grafana, keepalived, kibana, memcached, monasca-installer, openstack-dashboard-theme-SUSE, openstack-manila, openstack-neutron-fwaas, openstack-nova, openstack-tempest, python-Django, python-Pillow, python-psql2mysql, python-psutil, python-py, python-pysaml2, python-waitress, rabbitmq-server, release-notes-suse-openstack-cloud, zookeeper
Severity
Low
Notes
Title of the patch: Security update for ansible, crowbar-core, crowbar-ha, crowbar-openstack, etcd, flannel, grafana, keepalived, kibana, memcached, monasca-installer, openstack-dashboard-theme-SUSE, openstack-manila, openstack-neutron-fwaas, openstack-nova, openstack-tempest, python-Django, python-Pillow, python-psql2mysql, python-psutil, python-py, python-pysaml2, python-waitress, rabbitmq-server, release-notes-suse-openstack-cloud, zookeeper
Description of the patch: This update for ansible, crowbar-core, crowbar-ha, crowbar-openstack, etcd, flannel, grafana, keepalived, kibana, memcached, monasca-installer, openstack-dashboard-theme-SUSE, openstack-manila, openstack-neutron-fwaas, openstack-nova, openstack-tempest, python-Django, python-Pillow, python-psql2mysql, python-psutil, python-py, python-pysaml2, python-waitress, rabbitmq-server, release-notes-suse-openstack-cloud, zookeeper fixes the following issues:
Security fixes included ins this update:
ansible
- CVE-2019-3828: Fixed a path traversal in the fetch module (bsc#1126503).
grafana
- CVE-2020-13379: Fixed an incorrect access control issue which could
lead to information leaks or denial of service (bsc#1172409).
- CVE-2020-12052: Fixed an cross site scripting vulnerability related to
the annotation popup (bsc#1170657).
kibana
- CVE-2020-10743: Fixed a clickjacking vulnerability (bsc#1171909).
memcached (to version 1.5.17)
- CVE-2019-15026: Fixed a stack-based buffer over-read
in conn_to_str()n (bsc#1149110).
- CVE-2019-11596: Fixed a denial of service in the 'lru' command
(bsc#1133817)
- CVE-2018-1000115: Disabled UDP by default to reduce DDoS amplification
attacks (bsc#1083903).
python-Django
- CVE-2020-13254: Fixed a data leakage via malformed memcached keys
(bsc#1172167).
- CVE-2020-13596: Fixed a cross site scripting vulnerability related to
the admin parameters of the ForeignKeyRawIdWidget (bsc#1172166).
- Fixed a regression with the fix for CVE-2019-3498 (bsc#1161349).
python-Pillow
- CVE-2019-16865: Fixed a denial of service with specially crafted
image files (bsc#1153191).
- CVE-2020-5312: Fixed a buffer overflow in the PCX P mode (bsc#1160152).
- CVE-2020-5313: Fixed a buffer overflow related to FLI (bsc#1160153).
- CVE-2019-19911: Fixed a denial of service in FpxImagePlugin.py
(bsc#1160192).
python-pysaml2
- CVE-2020-5390: Fixed an issue with the verification of signatures in
SAML documents (bsc#1160851)
- CVE-2017-1000246: Fixed an issue with weak encryption data, caused by
initialization vector reuse(bsc#1068612).
python-waitress (to version 1.4.3)
- CVE-2019-16785: Fixed HTTP request smuggling through LF vs CRLF
handling (bsc#1161088).
- CVE-2019-16786: Fixed HTTP request smuggling through invalid
Transfer-Encoding (bsc#1161089).
- CVE-2019-16789: Fixed HTTP Request Smuggling through invalid
whitespace characters (bsc#1160790).
- CVE-2019-16792: Fixed HTTP Request Smuggling through Content-Length
header handling (bsc#1161670).
rubygem-activeresource
- CVE-2020-8151: Fixed information disclosure issue through specially
crafted requests (bsc#1171560)
rubygem-json-1_7
- CVE-2020-10663: Fixed Unsafe Object Creation Vulnerability in JSON
(bsc#1167244)
rubygem-puma
- CVE-2020-11077: Fixed HTTP Request Smuggling through proxy (bsc#1172175)
- CVE-2020-11076: Fixed HTTP Request smuggling through invalid
Transfer-Encoding header.
- CVE-2020-5247: Fixed HTTP Response Splitting through newline characters
handling (bsc#1165402)
zookeeper:
- CVE-2019-0201: Fixed an information disclosure related to
getACL() (bsc#1135773).
Non security fixes included in this update:
Changes in ansible:
- Add 0001-Disallow-use-of-remote-home-directories-containing-..patch
(bsc#1126503, CVE-2019-3828)
Changes in crowbar-core:
- Update to version 4.0+git.1580209654.1d112d31f:
* network: start OVS before wickedd (SOC-11067)
Changes in crowbar-ha:
- Update to version 4.0+git.1585316203.d6ad2c8:
* [4.0] add ssl termination on haproxy (bsc#1149535)
Changes in crowbar-openstack:
- Update to version 4.0+git.1589804581.9972163f0:
* [4.0] magnum: fix check for image/flavor (SOC-11251)
- Update to version 4.0+git.1589647351.ccfd9481f:
* [4.0] trove: fix rabbitmq connection URL (SOC-11286)
- Update to version 4.0+git.1589458214.9f765aa08:
* [4.0] Fix create magnum k8s image and flavor (SOC-11251)
- Update to version 4.0+git.1588271860.131fc8cc1:
* run keystone_register on cluster founder only when HA (SOC-11248)
* nova: run keystone_register on cluster founder only (SOC-11243)
- Update to version 4.0+git.1588096523.679da5c50:
* tempest: retry openstack commands (SOC-11238)
- Update to version 4.0+git.1587129016.c009e43c9:
* Disable magnum.tests.functional.api.v1.test_cluster (SOC-11224)
- Update to version 4.0+git.1587035427.abb6e9b4e:
* Fix barbican SSL support (SOC-9298)
- Update to version 4.0+git.1586421486.5601320b7:
* Fix magnum tempest tests (SOC-9298)
- Update to version 4.0+git.1585331022.609482166:
* tempest: update blacklisted tempest test cases (SOC-9801,SOC-11174,SOC-11187)
- Update to version 4.0+git.1585136604.988f3a1da:
* Disabling failing tempest tests on SOC7
* [4.0] ec2-api: run keystone_register on cluster founder only (SOC-11079)
- Update to version 4.0+git.1582582068.c8c2448c0:
* neutron: Place space between CLI arguments
- Update to version 4.0+git.1580894959.1fe5fd282:
* Revert '[4.0] rabbitmq: sync startup definitions.json with recipe' (SOC-11082)
- Update to version 4.0+git.1580469474.967ab8baf:
* rabbitmq: sync startup definitions.json with recipe (SOC-11077)
Changes in etcd:
- Build against go 1.6
- Fix etcd build. We are generating 2 binaries, etcd and etcdctl.
They need to be built separately
- Ensure /var/lib/etcd is controlled by etcd:etcd
- exclude i586. We don't expect this package to be built on i586.
- remove sysconfig.etcd: this file is not being used
- Update to version 3.1.0:
* raft: add node should reset the pendingConf state
* v3rpc: don't close watcher if client closes send
* e2e: add test for v3 watch over grpc gateway
* mvcc: remove unused restore method
* integration: don't expect recv to stop on CloseSend in waitResponse
* Documentation: add grpc gateway watch example
* version: bump up v3.1.0-rc.1+git
* discovery: warn on scheme mismatch
* grpcproxy: fix deadlock on watch broadcasts stop
* etcdmain: add '/metrics' HTTP/1 path to grpc-proxy
* etcd-tester: do not resolve localhost
* raftexample: confState should be saved after apply
* raft: test case to check the duplicate add node propose
* raft: fix test case, should wait config propose applied
* raft: fix test case for data race
* raft: use the channel instead of sleep to make test case reliable
* raft: fix TestNodeProposeAddDuplicateNode
* etcdmain: handle TLS in grpc-proxy listener
* etcd-tester:limit max retry backoff delay
* functional-tester: add withBlock() to grpc dial
* op-guide: add notes about Prometheus data source in Grafana
* clientv3: return copy of endpoints, not pointer
* auth: add a timeout mechanism to simple token
* client: update README about health monitoring
* grpcproxy: fix race between watch ranges delete() and broadcasts empty()
* lease: Use monotonic time in lease
* integration: use Range to wait for reboot in quota tests
* grpcproxy: fix race between coalesce and bcast on nextrev
* etcd-tester: refactor lease checker
* store: check sorted order in TestStoreGetSorted
* vendor: bump go-systemd to v14 to avoid build error
* integration: cancel Watch when TestV3WatchWithPrevKV exits
* grpcproxy: add richer metrics for watch
* grpcproxy: add cache related metrics
* raft: Fix election 'logs converge' test
* raft: Export Progress.IsPaused
* benchmark: add rate limit
* etcdctl: remove GetUser check before mutable commands
* grpcproxy: lock store when getting size
* Documentation: link added to libraries-and-tools.md with a new v2 Scala Client
* grpcproxy: fix deadlock in watchbroadcast
* etcdserver: time out when readStateC is blocking
* store: fix store_test.go comments
* vendor: update ugorji/go
* client: update generated ugorji codec
* doc: initial faq
* clientv3/integration: test lease keepalive works following quorum loss
* integration: use RequireLeader for TestV3LeaseFailover
* v3rpc, etcdserver, leasehttp: ctxize Renew with request timeout
* Documentation: add blox and chain as users
* etcdserver: do not send v2 sync if ttl keys do not exist
* ROADMAP: update for 3.2
* Documentation: add more FAQ questions
* grpcproxy: fix minor typo
* vendor: use versions when possible in glide.yaml
* scripts: use glide update if repo exists in glide.lock
* github: make bug reporting link non-relative
* github: make contribution link non-relative
* Documentation: update get examples to be clearer about ranges
* etcdserver, embed, v2http: move pprof setup to embed
* doc: add faq about apply warning logging
* test: exclude '_home' for gosimple, unused
* auth: fix gosimple errors
* integration: simplify boolean comparison in resp.Created
* raft: simplify boolean comparison, remove unused
* tools: simplify boolean comparison, remove unused
* e2e: remove unused 'ctlV3GetFailPerm'
* v3rpc: remove unused 'splitMethodName' function
* grpcproxy: remove unused field 'wbs *watchBroadcasts'
* doc: add faq about missing heartbeat
* etcdctl: 'fields' output formats
* build: remove dir use -r flag
* etcd-tester: add 'enable-pprof' option
* etcd-tester: cancel lease stream; fix OOM panic
* doc: add hardware section
* auth: improve 'removeSubsetRangePerms' to O(n)
* Documentation: use port 2379 in local cluster guide The port in endpoints should be 2379, instead of 12379.
* op-guide/clustering: fix typo
* embed: deep copy user handlers
* Documentation: add more FAQs (follower, leader, sys-require)
* clientv3: close Lease on client Close
* netutil: ctx-ize URLStringsEqual
* etcdserver: retry for 30s on advertise url check
* membership: retry for 30s on advertise url check
* clientv3: return error from KeepAlive if corresponding loop exits
* clientv3: add test for keep alive loop exit case
* auth, etcdserver: protect membership change operations with auth
* e2e: test cases of protecting membership change with auth
* clientv3: better error message for keep alive loop halt
* Documentation: FAQ entry for cluster ID mismatches
* dev-guide: add limit.md
* Documentation: minor fix nodes -> node
* etcdctl: warn when backend takes too long to open on migrate
* docs: explicitly set ETCDCTL_API=3 in recovery.md
* v3api, rpctypes: add ErrTimeoutDueToConnectionLost
* clientv3/integration: test lease grant/keepalive with/without failures
* clientv3: don't reset keepalive stream on grant failure
* etcdctl: tighten up output, reorganize README.md
* Documentation: add FAQs on membership operation
* Documentation: add 'why.md'
* embed: only override default advertised client URL if the client listen URL is 0.0.0.0
* raft: make memory storage set method thread safe
* raft: resume paused followers on receipt of MsgHeartbeatResp
* etcd-tester: fix typo, add endpoint in logs
* lease: force leader to apply its pending committed index for lease operations
* leasehttp: buffer error channel to prevent goroutine leak
* raft: fix pre-vote tests
* etcdserver: rework update committed index logic
* etcd-tester: remove unused err var from maxRev
* e2e: check etcdctl endpoint health is healthy if denied permission to key
* benchmark: a new option for configuring dial timeout
* ctlv3: consider permission denied error to be healthy for endpoints
* etcdmain: add --metrics flag for exposing histogram metrics
* e2e: test cluster-health
* v2http: submit QGET in health endpoint if no progress
* test: bump grpcproxy pass timeout to 15m
* lease: use atomics for accessing lease expiry
* e2e: poll '/version' in release upgrade tests
* e2e: unset ETCDCTL_API env var before running u2e tests
* etcdserver: consistent naming in raftReadyHandler
* coverage: rework code coverage for unit and integration tests
* testutil: whitelist thread created by go cover
* rafthttp: bump up timeout in pipeline test
* grpcproxy, etcdmain, integration: return done channel with WatchServer
* integration: defer clus.Terminate in watch tests
* raftexample: load snapshot when opening WAL
* etcd-runner: make command compliant
* raft: use status to test node stop
* etcdserver: expose ErrNotEnoughStartedMembers
* etcdserver: resume compactor only if leader
* benchmark: enable grpc error logging on stderr
* etcd-runner:add flags in watcher for hardcoded values
* docs: fix recovery example in recovery.md
* auth: use quorum get for GetUser/GetRole for mutable operations
* grpcproxy: tear down watch when client context is done
* integration: use only digits in unix ports
* e2e: dump stack on ctlTest timeout
* expect: EXPECT_DEBUG environment variable
* why: add origin of the term etcd
* testutil: increase size of buffer for stack dump
* raft: fix test case for #7042
* vendor: update ugorji/go
* integration: add grpc auth testing
* auth: reject empty user name when checking op permissions
* etcdctl: create root role on auth enable if it does not yet exist
* raft: add RawNode test case for #6866
* pkg/report: support 99.9-percentile, change column name
* documentation: display docs.md in github browser
* benchmark: option to rate limit range benchmark
* etcdserver, clientv3: handle a case of expired auth token
* tools: Add etcd 3.0 load test tool refernece
* transport: warn on user-provided CA
* NEWS: add v3.1.0, v3.0.16 + minor fixes
* clienv3: fix balancer test logic
* clientv3: don't reset stream on keepaliveonce or revoke failure
* grpcproxy: use ccache for key cache
* vendor: remove groupcache, add ccache
* pkg/report: add 'Stats' to expose report raw data
* travis: use Go 1.7.4, drop old env var
* ctlv3: print cluster info after adding new member
* Documentation: document upgrading to v3.1
* pkg/report: add nil checking for getTimeSeries
* etcdserver: use ReqTimeout for linearized read
* grpcproxy, etcdmain, integration: add close channel to kv proxy
* glide: update 'golang.org/x/net'
* vendor: update 'golang.org/x/net'
* Documentation: update experimental_apis for v3.1 release
* NEWS: fix date for v3.1 release
* Documentation: fix typo s/endpoint-health/endpoint health/
* clientv3/concurrency: fix rev comparison on concurrent key deletion
* integration: test STM apply on concurrent deletion
* pkg/flags: fixed prefix checking of the env variables
* etcdctlv3: snapshot restore works with lease key
* test: passed the test script arguments as the test function parameters
* documentation: update build documentation
* version: bump to v3.1.0
- Update to version 3.1.0rc.1:
* grpcproxy: watch next revision should be start revision when not 0
* grpcproxy: copy range request before storing in cache
* raft: return empty status if node is stopped
* mvcc: store.restore taking too long triggering snapshot cycle fix
* mvcc: TestStoreRestore fix
* mvcc : Added benchmark for store.resotre
* pkg/netutil: get default interface for tc commands
* version: bump up v3.1.0-rc.1
Changes in grafana:
- Add CVE-2020-13379.patch
* Security: fix unauthorized avatar proxying (bsc#1172409, CVE-2020-13379)
- Refresh systemd-notification.patch
- Fix declaration for LICENSE
- Add 0002-CVE-2020-12052-bsc1170657-XSS-annotation-popup-vulnerability.patch
* Security: Fix annotation popup XSS vulnerability
(bsc#1170657)
- Add CVE-2019-15043.patch (SOC-10357, CVE-2019-15043, bsc#1148383)
Changes in keepalived:
- update to 2.0.19
- new BR pkgconfig(libnftnl) to fix nftables support
- add nftables to the BR
- added patch
* linux-4.15.patch
- add buildrequires for file-devel
- used in the checker to verify scripts
- enable json stats and config dump support
new BR: pkgconfig(json-c)
- enable http regexp support: new BR pcre2-devel
- disable dbus instance creation support as it is marked as
dangerous
- Add BFD build option to keepalived.spec rpm file
Issue #1114 identified that the keepalived.spec file was not being
generated to build BFD support even if keepalived had been
configured to support it.
- full changelog
https://keepalived.org/changelog.html
- update to 1.4.5:
* Update snapcraft.yaml for 1.4.x+git
* Fix generation of git-commit.h with git commit number.
* Set virtual server address family correctly.
* Set virtual server address family correctly when using tunnelled
real servers.
* Fix handling of virtual servers with no real servers at config time.
* Add warning if virtual and real servers are different address families.
Although normally the virtual server and real servers must have the
same address family, if a real server is tunnelled, the address families
can be different. However, the kernel didn't support that until 3.18,
so add a check that the address families are the same if different
address families are not supported by the kernel.
* Send correct status in Dbus VrrpStatusChange notification.
When an instance transitioned from BACKUP to FAULT, the Dbus
status change message reported the old status (BACKUP) rather than
the new status (FAULT). This commit attempts to resolved that.
* doc: ipvs schedulers update
* Fix a couple of typos in configure.ac.
* Fix namespace collision with musl if_ether.h.
* Check if return value from read_value_block() is null before using.
* Fix reporting real server stats via SNMP.
* Make checker process handle RTM_NEWLINK messages with -a option
Even though the checker process doesn't subscribe to RTNLGRP_LINK
messages, it appears that older kernels (certainly 2.6.32) can
send RTM_NEWLINK (but not RTM_DELLINK) messages. This occurs
when the link is set to up state.
Only the VRRP process is interested in link messages, and so the
checker process doesn't do the necessary initialisation to be able
to handle RTM_NEWLINK messages.
This commit makes the checker process simply discard RTM_NEWLINK
and RTM_DELLINK messages, rather than assuming that if it receives
an RTM_NEWLINK message it must be the VRRP process.
This problem was reported in issue #848 since the checker process
was segfaulting when a new interface was added when the -a command
line option was specified.
* Fix handling RTM_NEWLINK when building without VRRP code.
* Fix building on Fedora 28.
net-snmp-config output can include compiler and linker flags that
refer to spec files that were used to build net-snmp but may not
exist on the system building keepalived. That would cause the build
done by configure to test for net-snmp support to fail; in particular
on a Fedora 28 system that doesn't have the redhat-rpm-config package
installed.
This commit checks that any spec files in the compiler and linker
flags returned by net-snmp-config exist on the system building
keepalived, and if not it removes the reference(s) to the spec file(s).
* keepalived-1.4.3 released.
* vrrp: setting '0' as default value for ifa_flags to make gcc happy.
* Add additional libraries when testing for presence of SSL_CTX_new().
It appears that some systems need -lcrypto when linking with -lssl.
* Sanitise checking of libnl3 in configure.ac.
* Report and handle missing '}'s in config files.
* Add missing '\n' in keepalived.data output.
* Stop backup taking over as master while master reloads.
If a reload was initiated just before an advert, and since it took
one advert interval after a reload before an advert was sent, if the
reload itself took more than one advert interval, the backup could
time out and take over as master.
This commit makes keepalived send adverts for all instances that are
master immediately before a reload, and also sends adverts immediately
after a reload, thereby trippling the time available for the reload
to complete.
* Add route option fastopen_no_cookie and rule option l3mdev.
* Fix errors in KEEPALIVED-MIB.txt.
* Simplify setting on IN6_ADDR_GEN_MODE.
* Cosmetic changes to keepalived(8) man page.
* Don't set ipvs sync daemon to master state before becoming master
If a vrrp instance which was the one specified for the ipvs sync
daemon was configured with initial state master, the sync daemon
was being set to master mode before the vrrp instance transitioned
to master mode. This caused an error message when the vrrp instance
transitioned to master and attempted to make the sync daemon go from
backup to master mode.
This commit stops setting the sync daemon to master mode at initialisation
time, and it is set to master mode when the vrrp instance transitions
to master.
* Fix freeing vector which has not had any entries allocated.
* Add additional mem-check disgnostics
vector_alloc, vectot_alloc_slot, vector_free and alloc_strvec all
call MALLOC/FREE but the functions written in the mem_check log
are vector_alloc etc, not the functions that call them.
This commit adds logging of the originating calling function.
* Fix memory leak in parser.c.
* Improve alignment of new mem-check logging.
* Disable all checkers on a virtual server when ha_suspend set.
Only the first checker was being disabled; this commit now disables
all of them.
Also, make the decision to disable a checker when starting/reloading
when scheduling the checker, so that the existance of the required
address can be checked.
* Stop genhash segfaulting when built with --enable-mem-check.
* Fix memory allocation problems in genhash.
* Properly fix memory allocation problems in genhash.
* Fix persistence_granularity IPv4 netmask validation.
The logic test from inet_aton() appears to be inverted.
* Fix segfault when checker configuration is missing expected parameter
Issue #806 mentioned as an aside that 'nb_get_retry' without a parameter
was sigfaulting. Commit be7ae80 - 'Stop segfaulting when configuration
keyword is missing its parameter' missed the 'hidden' uses of vector_slot()
(i.e. those used via definitions in header files).
This commit now updates those uses of vector_slot() to use strvec_slot()
instead.
* Fix compiling on Linux 2.x kernels.
There were missing checks for HAVE_DECL_CLONE_NEWNET causing
references to an undeclared variable if CLONE_NEWNET wasn't defined.
* Improve parsing of kernel release.
The kernel EXTRAVERSION can start with any character (although
starting with a digit would be daft), so relax the check for it
starting with a '-'. Kernels using both '+' and '.' being the
first character of EXTRAVERSION have been reported.
* Improve grammer.
* add support for SNI in SSL_GET check.
this adds a `enable_sni` parameter to SSL_GET, making sure the check
passes the virtualhost in the SNI extension during SSL handshake.
* Optimise setting host name for SSL_GET requests with SNI.
* Allow SNI to be used with SSL_GET with OpenSSL v1.0.0 and LibreSSL.
* Use configure to check for SSL_set_tlsext_host_name()
Rather than checking for a specific version of the OpenSSL library
(and it would also need checking the version of the LibreSSL library)
let configure check for the presence of SSL_set_tlsext_host_name().
Also omit all code related to SNI of SSL_set_tlsext_host_name() is
not available.
* Use configure to determine available OpenSSL functionality
Rather than using version numbers of the OpenSSL library to determine
what functions are available, let configure determine whether the
functions are supported.
The also means that the same tests work for LibreSSL.
* Add support for gratuitous ARPs for IP over Infiniband.
* Use system header definition instead of local definition IF_HWADDR_MAX
linux/netdevice.h has definition MAX_ADDR_LEN, which is 32, whereas
IF_HWADDR_MAX was locally defined to be 20.
Unfortunately we end up with more system header file juggling to ensure
we don't have duplicate definitions.
* Fix vrrp_script and check_misc scripts of type </dev/tcp/127.0.0.1/80.
* Add the first pre-defined config definition (${_PWD})
${_PWD} in a configuration file will be replaced with the full
path name of the directory that keepalived is reading the current
configuration file from.
* Open and run the notify fifo and script if no other fifo
Due to the way the code was structured the notify_fifo for both
checker and vrrp messages wasn't run if neither the vrrp or checker
fifo wasn't configured.
Also, if all three fifos were configured, the general fifo script
was executed by both the vrrp and checker process, causing problems.
* Add support for Infiniband interfaces when dumping configuration.
* Tidy up layout in vrrp_arp.c.
* Add configure check for support of position independant executables (PIE).
* Add check for -pie support, and fix writing to keepalived.data.
* keepalived-1.4.2 released.
* Make genhash exit with exit code 1 on error.
Issue #766 identified that genhash always exits with exit code 1
even if an error has occurred.
* Rationalise printing of http header in genhash.
* Use http header Content-Length field in HTTP_CHECK/SSL_CHECK.
If a Content-Length is supplied in the http header, use that as a
limit to the data length (as wget does). If the length of data
received does not match the Content-Length log a warning.
* Optimise parameter passing to fprintf in genhash.
* Don't declare mark variable if don't have MARK socket option.
* Fix sync groups with only one member.
Commit c88744a0 allowed sync groups with only 1 member again, but
didn't stop removing the sync group if there was only 1 member.
This commit now doesn't remove sync groups with only one member.
* Make track scripts work with --enable-debug config option.
* Add warning if --enable-debug configure option is used.
* Allow more flexibility of layout of { and } in config files.
keepalived was a bit fussy about where '{'s and '}'s (braces) could
be placed in terms of after the keyword, or on a line on their own.
It certainly was not possible to have multiple braces on one line.
This commit now provides complete flexibility of where braces are, so
long as they occur in the correct order.
* Make alloc_value_block() report block type if there is an error.
* Simplify alloc_value_block() by using libc string functions.
* Add dumping of garp delay config when using -d option.
* Fix fractions of seconds for garp group garp_interval.
* Make read_value_block() use alloc_value_block().
This removes quite a bit of duplication of functionality, and
ensures the configuration parsing will be more consistent.
* Fix build with Linux kernel headers v4.15.
Linux kernel version 4.15 changed the libc/kernel headers suppression
logic in a way that introduces collisions.
* Add missing command line options to keepalived(8) man page.
* Fix --dont-release-vrrp.
On github, ushuz reported that commit 62e8455 - 'Don't delete vmac
interfaces before dropping multicast membership' broke --dont-release-vrrp.
This commit restores the correct functionality.
* Define _GNU_SOURCE for all compilation units.
Rather than defining _GNU_SOURCE when needed, let configure add
it to the flags passed to the C compiler, so that it is defined
for all compilation units. This ensures consistence.
* Fix new warnings procuded by gcc 8.
* Fix dumping empty lists.
Add a check in dump_list() for an empty list, and don't attempt
to dump it if it is empty.
* Resolve conversion-check compiler warnings.
* Add missing content to installing_keepalived.rst documentation.
Issue #778 identified that there was text missing at the end of
the document, and that is now added.
* Fix systemd service to start after network-online.target.
This fix was merged downstream by RedHat in response to
RHBZ #1413320.
* Update INSTALL file to describe packages needed for building
documentation.
* INSTALL: note linux distro package that provides 'sphinx_rtd_theme'
* Clear /proc/sys/net/ipv6/conf/IF/disable_ipv6 when create VMACs.
An issue was identified where keepalived was reporting permission
denied when attempting to add an IPv6 address to a VMAC interface.
It turned out that this was because
/proc/sys/net/ipv6/conf/default/disable_ipv6
was set to 1, causing IPv6 to be disables on all interfaces that
keepalived created.
This commit clears disable_ipv6 on any VMAC interfaces that
keepalived creates if the vrrp instance is using IPv6.
- remove linux-4.15.patch: does not apply anymore and not needed
(the distros using 4.15 have moved on to keepalived 2.x)
- Only Require insserv on distributions without systemd.
- Fix systemd related requires/buildRequires
- Do not run scriptlets that use insserv when using systemd
- add linux-4.15.patch
Changes in kibana:
- Add 0001-Configurable-custom-response-headers-for-server.patch
(bsc#1171909, CVE-2020-10743)
Changes in memcached:
- version update to 1.5.17
* bugfixes
fix strncpy call in stats conns to avoid ASAN violation (bsc#1149110, CVE-2019-15026)
extstore: fix indentation
add error handling when calling dup function
add unlock when item_cachedump malloc failed
extstore: emulate pread(v) for macOS
fix off-by-one in logger to allow CAS commands to be logged.
use strdup for explicitly configured slab sizes
move mem_requested from slabs.c to items.c (internal cleanup)
* new features
add server address to the 'stats conns' output
log client connection id with fetchers and mutations
Add a handler for seccomp crashes
- version update to 1.5.16
* bugfixes
When nsuffix is 0 space for flags hasn't been allocated so don't memcpy them.
- version update to 1.5.15
* bugfixes
Speed up incr/decr by replacing snprintf.
Use correct buffer size for internal URI encoding.
change some links from http to https
Fix small memory leak in testapp.c.
free window_global in slab_automove_extstore.c
remove inline_ascii_response option
-Y [filename] for ascii authentication mode
fix: idle-timeout wasn't compatible with binprot
* features
-Y [authfile] enables an authentication mode for ASCII protocol.
- modified patches
% memcached-autofoo.patch (refreshed)
- version update to 1.5.14
* update -h output for -I (max item size)
* fix segfault in 'lru' command (bsc#1133817, CVE-2019-11596)
* fix compile error on centos7
* extstore: error adjusting page_size after ext_path
* extstore: fix segfault if page_count is too high.
* close delete + incr item survival race bug
* memcached-tool dump fix loss of exp value
* Fix 'qw' in 'MemcachedTest.pm' so wait_ext_flush is exported properly
* Experimental TLS support.
* Basic implementation of TLS for memcached.
* Improve Get And Touch documentation
* fix INCR/DECR refcount leak for invalid items
- modified patches
% memcached-autofoo.patch (refreshed)
- Version bump to 1.5.11:
* extstore: balance IO thread queues
- Drop memcached-fix_test.patch that is present now upstream
- Add patch to fix aarch64, ppc64* and s390x tests:
* memcached-fix_test.patch
- Fix linter errors regarding COPYING
- update to 1.5.10:
* disruptive change in extstore: -o ext_page_count= is deprecated
and no longer works. To specify size: -o ext_path=/d/m/e:500G
extstore figures out the page count based on your desired page
size. M|G|T|P supported.
* extstore: Add basic JBOD support: ext_path can be specified
multiple times for striping onto simimar devices
* fix alignment issues on some ARM platforms for chunked items
- Update to 1.5.9:
* Bugfix release.
* Important note: if using --enable-seccomp, privilege dropping
is no longer on by default. The feature is experimental and many
users are reporting hard to diagnose problems on varied platforms.
* Seccomp is now marked EXPERIMENTAL, and must be explicitly
enabled by adding -o drop_privileges. Once we're more confident
with the usability of the feature, it will be enabled in -o modern,
like any other new change. You should only use it if you are
willing to carefully test it, especially if you're a vendor or
distribution.
* Also important is a crash fix in extstore when using the ASCII
protocol, large items, and running low on memory.
- update to 1.5.8:
* Bugfixes for seccomp and extstore
* Extstore platform portability has been greatly improved for ARM
and 32bit systems
- includes changes from 1.5.7:
* Fix alignment issues for 64bit ARM processors
* Fix seccomp portability
* Fix refcount leak with extstore while using binary touch commands
- turn on the testsuite again, it seems to pass server side,
too
- Home directory shouldn't be world readable bsc#1077718
- Mention that this stream isn't affected by bsc#1085209,
CVE-2018-1000127 to make the checker bots happy.
- update to 1.5.6 (bsc#1083903, CVE-2018-1000115):
* This update disables UDP by default to reduce DDoS amplification
attacks
* see https://github.com/memcached/memcached/wiki/ReleaseNotes156
* see https://github.com/memcached/memcached/wiki/ReleaseNotes155
* see https://github.com/memcached/memcached/wiki/ReleaseNotes154
* see https://github.com/memcached/memcached/wiki/ReleaseNotes153
* see https://github.com/memcached/memcached/wiki/ReleaseNotes152
* see https://github.com/memcached/memcached/wiki/ReleaseNotes151
* see https://github.com/memcached/memcached/wiki/ReleaseNotes150
- Replace references to /var/adm/fillup-templates with new
%_fillupdir macro (boo#1069468)
Changes in monasca-installer:
- Add 0001-kibana:-set-x-frame-options-header.patch (bsc#1171909,
CVE-2020-10743)
Changes in openstack-dashboard-theme-SUSE:
- Switch github URL from git@ to git:// to bypass authentication
Changes in openstack-manila:
- Add 0001-Fix-exportfs-u-usage-in-generic-driver.patch
Backported from upstream patch https://review.opendev.org/#/c/411631/
Related Bug (SOC-9801)
Changes in openstack-neutron-fwaas:
- Add 0050-Remove-tempest-shared-physical-network.patch (SOC-9801)
This tempest configuration option is not present in tempest, as
it was only added after the SOC7 release cut.
Changes in openstack-nova:
- Add 0001-live-mig-keep-disk-device-address-same.patch (bsc#1164316)
- Fix for https://bugs.launchpad.net/nova/+bug/1715569
Changes in openstack-tempest:
- Add 0001-Use-available-scheduler-filters.patch
Backported from upstream patch https://review.opendev.org/#/c/570207/
Related Bugs: SOC-9801,SOC-11174
- Add 0001-Remove-volume_feature_enabled.volume_services.patch
Backported from upstream patch https://review.opendev.org/#/c/438220/
Related Bug (SOC-9801)
Changes in python-cffi:
- Do not build python3 subpackages as C:OS:Newton does not support
it
- provide also python-cffi = 1.10.0 and 1.5.2 to avoid breaking the
cloud 7 and 8 requirements (bsc#948198)
- Update in SLE-12 (bsc#1138748, jsc#ECO-1256, jsc#PM-1598)
- Add dont-corrupt-memory.patch to fix boo#1111657 (originally
from https://bitbucket.org/cffi/cffi/commits/7a76a3815340)
- build python3 subpackage (FATE#324435, FATE#323875)
- Add patch cffi-loader.patch to fix bsc#1070737
- Sort out with spec-cleaner
- update to version 1.11.2:
* Fix Windows issue with managing the thread-state on CPython 3.0 to
3.5
- Update pytest in spec to add c directory tests in addition to
testing directory.
- Omit test_init_once_multithread tests as they rely on multiple
threads finishing in a given time. Returns sporadic pass/fail
within build.
- Update to 1.11.1:
* Fix tests, remove deprecated C API usage
* Fix (hack) for 3.6.0/3.6.1/3.6.2 giving incompatible binary
extensions (cpython issue #29943)
* Fix for 3.7.0a1+
- Update to 1.11.0:
* Support the modern standard types char16_t and char32_t. These
work like wchar_t: they represent one unicode character, or when
used as charN_t * or charN_t[] they represent a unicode string.
The difference with wchar_t is that they have a known, fixed
size. They should work at all places that used to work with
wchar_t (please report an issue if I missed something). Note
that with set_source(), you need to make sure that these types
are actually defined by the C source you provide (if used in
cdef()).
* Support the C99 types float _Complex and double _Complex. Note
that libffi doesn’t support them, which means that in the ABI
mode you still cannot call C functions that take complex
numbers directly as arguments or return type.
* Fixed a rare race condition when creating multiple FFI instances
from multiple threads. (Note that you aren’t meant to create
many FFI instances: in inline mode, you should write
ffi = cffi.FFI() at module level just after import cffi; and in
out-of-line mode you don’t instantiate FFI explicitly at all.)
* Windows: using callbacks can be messy because the CFFI internal
error messages show up to stderr—but stderr goes nowhere in many
applications. This makes it particularly hard to get started
with the embedding mode. (Once you get started, you can at least
use @ffi.def_extern(onerror=...) and send the error logs where
it makes sense for your application, or record them in log
files, and so on.) So what is new in CFFI is that now, on
Windows CFFI will try to open a non-modal MessageBox (in addition
to sending raw messages to stderr). The MessageBox is only
visible if the process stays alive: typically, console
applications that crash close immediately, but that is also the
situation where stderr should be visible anyway.
* Progress on support for callbacks in NetBSD.
* Functions returning booleans would in some case still return 0
or 1 instead of False or True. Fixed.
* ffi.gc() now takes an optional third parameter, which gives an
estimate of the size (in bytes) of the object. So far, this is
only used by PyPy, to make the next GC occur more quickly
(issue #320). In the future, this might have an effect on
CPython too (provided the CPython issue 31105 is addressed).
* Add a note to the documentation: the ABI mode gives function
objects that are slower to call than the API mode does. For
some reason it is often thought to be faster. It is not!
- Update to 1.10.1:
* Fixed the line numbers reported in case of cdef() errors. Also,
I just noticed, but pycparser always supported the preprocessor
directive # 42 'foo.h' to mean “from the next line, we’re in
file foo.h starting from line 42”, which it puts in the error
messages.
- update to 1.10.0:
* Issue #295: use calloc() directly instead of PyObject_Malloc()+memset()
to handle ffi.new() with a default allocator. Speeds up ffi.new(large-array)
where most of the time you never touch most of the array.
* Some OS/X build fixes (“only with Xcode but without CLT”).
* Improve a couple of error messages: when getting mismatched versions of
cffi and its backend; and when calling functions which cannot be called with
libffi because an argument is a struct that is “too complicated” (and not
a struct pointer, which always works).
* Add support for some unusual compilers (non-msvc, non-gcc, non-icc, non-clang)
* Implemented the remaining cases for ffi.from_buffer. Now all
buffer/memoryview objects can be passed. The one remaining check is against
passing unicode strings in Python 2. (They support the buffer interface, but
that gives the raw bytes behind the UTF16/UCS4 storage, which is most of the
times not what you expect. In Python 3 this has been fixed and the unicode
strings don’t support the memoryview interface any more.)
* The C type _Bool or bool now converts to a Python boolean when reading,
instead of the content of the byte as an integer. The potential
incompatibility here is what occurs if the byte contains a value different
from 0 and 1. Previously, it would just return it; with this change, CFFI
raises an exception in this case. But this case means “undefined behavior”
in C; if you really have to interface with a library relying on this,
don’t use bool in the CFFI side. Also, it is still valid to use a byte
string as initializer for a bool[], but now it must only contain \x00 or
\x01. As an aside, ffi.string() no longer works on bool[] (but it never made
much sense, as this function stops at the first zero).
* ffi.buffer is now the name of cffi’s buffer type, and ffi.buffer() works
like before but is the constructor of that type.
* ffi.addressof(lib, 'name') now works also in in-line mode, not only in
out-of-line mode. This is useful for taking the address of global variables.
* Issue #255: cdata objects of a primitive type (integers, floats, char) are
now compared and ordered by value. For example, <cdata 'int' 42> compares
equal to 42 and <cdata 'char' b'A'> compares equal to b'A'. Unlike C,
<cdata 'int' -1> does not compare equal to ffi.cast('unsigned int', -1): it
compares smaller, because -1 < 4294967295.
* PyPy: ffi.new() and ffi.new_allocator()() did not record “memory pressure”,
causing the GC to run too infrequently if you call ffi.new() very often
and/or with large arrays. Fixed in PyPy 5.7.
* Support in ffi.cdef() for numeric expressions with + or -. Assumes that
there is no overflow; it should be fixed first before we add more general
support for arbitrary arithmetic on constants.
- do not generate HTML documentation for packages that are indirect
dependencies of Sphinx
(see docs at https://cffi.readthedocs.org/ )
- update to 1.9.1
- Structs with variable-sized arrays as their last field: now we track the
length of the array after ffi.new() is called, just like we always tracked
the length of ffi.new('int[]', 42). This lets us detect out-of-range
accesses to array items. This also lets us display a better repr(), and
have the total size returned by ffi.sizeof() and ffi.buffer(). Previously
both functions would return a result based on the size of the declared
structure type, with an assumed empty array. (Thanks andrew for starting
this refactoring.)
- Add support in cdef()/set_source() for unspecified-length arrays in
typedefs: typedef int foo_t[...];. It was already supported for global
variables or structure fields.
- I turned in v1.8 a warning from cffi/model.py into an error: 'enum xxx' has
no values explicitly defined: refusing to guess which integer type it is
meant to be (unsigned/signed, int/long). Now I’m turning it back to a
warning again; it seems that guessing that the enum has size int is a
99%-safe bet. (But not 100%, so it stays as a warning.)
- Fix leaks in the code handling FILE * arguments. In CPython 3 there is a
remaining issue that is hard to fix: if you pass a Python file object to a
FILE * argument, then os.dup() is used and the new file descriptor is only
closed when the GC reclaims the Python file object—and not at the earlier
time when you call close(), which only closes the original file descriptor.
If this is an issue, you should avoid this automatic convertion of Python
file objects: instead, explicitly manipulate file descriptors and call
fdopen() from C (...via cffi).
- When passing a void * argument to a function with a different pointer type,
or vice-versa, the cast occurs automatically, like in C. The same occurs
for initialization with ffi.new() and a few other places. However, I
thought that char * had the same property—but I was mistaken. In C you get
the usual warning if you try to give a char * to a char ** argument, for
example. Sorry about the confusion. This has been fixed in CFFI by giving
for now a warning, too. It will turn into an error in a future version.
- Issue #283: fixed ffi.new() on structures/unions with nested anonymous
structures/unions, when there is at least one union in the mix. When
initialized with a list or a dict, it should now behave more closely like
the { } syntax does in GCC.
- CPython 3.x: experimental: the generated C extension modules now use the
“limited API”, which means that, as a compiled .so/.dll, it should work
directly on any version of CPython >= 3.2. The name produced by distutils
is still version-specific. To get the version-independent name, you can
rename it manually to NAME.abi3.so, or use the very recent setuptools 26.
- Added ffi.compile(debug=...), similar to python setup.py build --debug but
defaulting to True if we are running a debugging version of Python itself.
- Removed the restriction that ffi.from_buffer() cannot be used on byte
strings. Now you can get a char * out of a byte string, which is valid as
long as the string object is kept alive. (But don’t use it to modify the
string object! If you need this, use bytearray or other official
techniques.)
- PyPy 5.4 can now pass a byte string directly to a char * argument (in older
versions, a copy would be made). This used to be a CPython-only
optimization.
- ffi.gc(p, None) removes the destructor on an object previously created by
another call to ffi.gc()
- bool(ffi.cast('primitive type', x)) now returns False if the value is zero
(including -0.0), and True otherwise. Previously this would only return
False for cdata objects of a pointer type when the pointer is NULL.
- bytearrays: ffi.from_buffer(bytearray-object) is now supported. (The reason
it was not supported was that it was hard to do in PyPy, but it works since
PyPy 5.3.) To call a C function with a char * argument from a buffer
object—now including bytearrays—you write lib.foo(ffi.from_buffer(x)).
Additionally, this is now supported: p[0:length] = bytearray-object. The
problem with this was that a iterating over bytearrays gives numbers
instead of characters. (Now it is implemented with just a memcpy, of
course, not actually iterating over the characters.)
- C++: compiling the generated C code with C++ was supposed to work, but
failed if you make use the bool type (because that is rendered as the C
_Bool type, which doesn’t exist in C++).
- help(lib) and help(lib.myfunc) now give useful information, as well as
dir(p) where p is a struct or pointer-to-struct.
- drop upstreamed python-cffi-avoid-bitshifting-negative-int.patch
- update for multipython build
- Add python-cffi-avoid-bitshifting-negative-int.patch to actually
fix the 'negative left shift' warning by replacing bitshifting
in appropriate places by bitwise and comparison to self; patch
taken from upstream git. Drop cffi-1.5.2-wnoerror.patch: no
longer required.
- disable 'negative left shift' warning in test suite to prevent
failures with gcc6, until upstream fixes the undefined code
in question (boo#981848, cffi-1.5.2-wnoerror.patch)
- Update to version 1.6.0:
* ffi.list_types()
* ffi.unpack()
* extern “Python+C”
* in API mode, lib.foo.__doc__ contains the C signature now.
* Yet another attempt at robustness of ffi.def_extern() against
CPython’s interpreter shutdown logic.
Changes in python-pylons-sphinx-themes:
- moved LICENSE.txt to docs to match old structure
- specfile:
* update copyright year
- update to version 1.0.11:
* Fix the width of linenos table column when used in code-blocks.
- Replace %fdupes -s with plain %fdupes; hardlinks are better.
- Update to version 1.0.10 (2018-09-25)
+ Add Read the Docs to the recipients of ad revenue.
- Update to version 1.0.9 (2018-09-23)
+ Remove hyphenation because it sometimes hyphenates
inappropriately, such as in code.
- Update to version 1.0.8 (2018-09-21)
+ Fix support for Ethical Ads.
- Update to version 1.0.7 (2018-09-21)
+ Added support for Ethical Ads for Read The Docs.
See https://github.com/Pylons/pylons-sphinx-themes/pull/12
- Remove superfluous devel dependency for noarch package
- Update to version 1.0.6
* Update zest.releaser in order to release to PyPI.
- Update to version 1.0.5
* Clean up licensing
https://github.com/Pylons/pylons-sphinx-themes/issues/8
- Provide/obsolete old pylons_sphinx_theme
- Update to version 1.0.4
* Specify line spacing for list items for only within the
.body class.
version 1.0.3
* Add line spacing for list items. Closes #4.
version 1.0.2:
* Remove HTTPS protocol to allow either HTTPS or HTTP.
version 1.0.1:
* Use HTTPS for protocol of stylesheets.
version 1.0:
* Use zest.releaser for releasing.
* Improve documentation.
- Converted to single-spec
- version 0.3.1: initial build
Changes in python-Django:
- Fix merge artifact in CVE-2020-13596.patch
- Add CVE-2019-19844.patch (bsc#1159447, CVE-2019-19844)
* Fix Potential account hijack via password reset form
- Security fixes (bsc#1172167, bsc#1172166, CVE-2020-13254, CVE-2020-13596)
* Added patch CVE-2020-13254.patch
* Added patch CVE-2020-13596.patch
- Set _defaultlicensedir
- Fix for SG#56542, bsc#1161349:
* Fixed CVE-2019-3498-Fixed-content-spoof.patch
- Fix for SG#56542, bsc#1161349:
* Fixed CVE-2019-3498-Fixed-content-spoof.patch
(There was a bug in this .patch file; some code had been
accidentally included in the backport, and this stopped the 404
page from loading. See commit message and bug report for more
information)
Changes in python-Pillow:
- Remove decompression_bomb.gif and relevant test case to avoid
ClamAV scan alerts during build
- Add 0008-Corrected-negative-seeks.patch
* From upstream, backported
* Fixes part of CVE-2019-16865, bsc#1153191
- Add 0009-Make-Image.crop-an-immediate-operation.patch
* From upstream, backported
* Fixes https://github.com/python-pillow/Pillow/issues/1077
* Used by 0012-Added-decompression-bomb-checks.patch
- Add 0010-Crop-decompression.patch
* From upstream, backported
* Fixes https://github.com/python-pillow/Pillow/issues/2402
* Used by 0012-Added-decompression-bomb-checks.patch
- Add 0011-Added-DecompressionBombError.patch
* From upstream, backported
* Adds DecompressionBombError class
* Used by 0012-Added-decompression-bomb-checks.patch
- Add 0012-Added-decompression-bomb-checks.patch
* From upstream, backported
* Fixes part of CVE-2019-16865, bsc#1153191
- Add 0013-Raise-error-if-dimension-is-a-string.patch
* From upstream, backported
* Fixes part of CVE-2019-16865, bsc#1153191
- Add 0014-Catch-buffer-overruns.patch
* From upstream, backported
* Fixes part of CVE-2019-16865, bsc#1153191
- Add 0015-Catch-PCX-P-mode-buffer-overrun.patch
* From upstream, backported
* Fixes CVE-2020-5312, bsc#1160152
- Add 0016-Ensure-previous-FLI-frame-is-loaded.patch
* From upstream, backported
* Fixes https://github.com/python-pillow/Pillow/issues/2649
* Uncovers CVE-2020-5313, bsc#1160153
- Add 0017-Catch-FLI-buffer-overrun.patch
* From upstream, backported
* Fixes CVE-2020-5313, bsc#1160153
- Add 018-Invalid-number-of-bands-in-FPX-image.patch
* From upstream, backported
* Fixes CVE-2019-19911, bsc#1160192
Changes in python-psql2mysql:
- Update to version 0.5.0+git.1589351878.4ef877c:
* Do not fail on instance_info length, it is expected to be LONGTEXT
- Update to version 0.5.0+git.1582192453.98e9561:
* Neutron drivers use own naming for alembic migrations, e.g. cisco_alembic_version, aci_alembic_version, etc depending on driver.
Changes in python-psutil:
- Add bsc1156525-CVE-2019-18874.patch (bsc#1156525, CVE-2019-18874)
Changes in python-py:
- update to version 1.5.2
-----------------------------------------------------------------
- update to version 1.4.33
Changes in python-py:
- update to version 1.5.2:
* fix #169, #170: error importing py.log on Windows: no module named
'syslog'.
- changes from version 1.5.1:
* fix #167 - prevent pip from installing py in unsupported Python
versions.
- changes from version 1.5.0:
* python 2.6 and 3.3 are no longer supported
* deprecate py.std and remove all internal uses
* fix #73 turn py.error into an actual module
* path join to / no longer produces leading double slashes
* fix #82 - remove unsupportable aliases
* fix python37 compatibility of path.sysfind on windows by correctly
replacing vars
* turn iniconfig and apipkg into vendored packages and ease
de-vendoring for distributions
* fix #68 remove invalid py.test.ensuretemp references
* fix #25 - deprecate path.listdir(sort=callable)
* add TerminalWriter.chars_on_current_line read-only property that
tracks how many characters have been written to the current line.
- changes from version 1.4.34
* fix issue119 / pytest issue708 where tmpdir may fail to make
numbered directories when the filesystem is case-insensitive.
- update to version 1.4.33:
* avoid imports in calls to py.path.local().fnmatch(). Thanks
Andreas Pelme for the PR.
* fix issue106: Naive unicode encoding when calling fspath() in
python2. Thanks Tiago Nobrega for the PR.
* fix issue110: unittest.TestCase.assertWarns fails with py
imported.
- changes from version 1.4.32
* fix issue70: aded ability to copy all stat info in
py.path.local.copy.
* make TerminalWriter.fullwidth a property. This results in the
correct value when the terminal gets resized.
* update supported html tags to include recent additions.
Thanks Denis Afonso for the PR.
* Remove internal code in ``Source.compile`` meant to support
earlier Python 3 versions that produced the side effect
of leaving ``None`` in ``sys.modules`` when called (see
pytest-dev/pytest#2103). Thanks Bruno Oliveira for the PR.
Changes in python-pysaml2:
- Add 0001-Always-generate-a-random-IV-for-AES-operations.patch
(CVE-2017-1000246, bsc#1068612)
- Add 0001-Fix-XML-Signature-Wrapping-XSW-vulnerabilities.patch
(CVE-2020-5390, bsc#1160851)
Changes in python-waitress:
- update to 1.4.3 to include fixes for:
* CVE-2019-16785 / bsc#1161088
* CVE-2019-16786 / bsc#1161089
* CVE-2019-16789 / bsc#1160790
* CVE-2019-16792 / bsc#1161670
- moved LICENSE.txt to docs to match old structure
- make sure UTF8 locale is used when runnning tests
* Sometimes functional tests executed in python3 failed if stdout was not
set to UTF-8. The error message was:
ValueError: underlying buffer has been detached
- %python3_only -> %python_alternative
- update to 1.4.3
* Waitress did not properly validate that the HTTP headers it received
were properly formed, thereby potentially allowing a front-end server
to treat a request different from Waitress. This could lead to HTTP
request smuggling/splitting.
- drop patch local-intersphinx-inventories.patch
* it was commented out, anyway
- update to 1.4.0:
- Waitress used to slam the door shut on HTTP pipelined requests without
setting the ``Connection: close`` header as appropriate in the response. This
is of course not very friendly. Waitress now explicitly sets the header when
responding with an internally generated error such as 400 Bad Request or 500
Internal Server Error to notify the remote client that it will be closing the
connection after the response is sent.
- Waitress no longer allows any spaces to exist between the header field-name
and the colon. While waitress did not strip the space and thereby was not
vulnerable to any potential header field-name confusion, it should have sent
back a 400 Bad Request. See https://github.com/Pylons/waitress/issues/273
- CRLR handling Security fixes
- update to 1.3.1
* Waitress won’t accidentally throw away part of the path if it
starts with a double slash
- version update to 1.3.0
Deprecations
~~~~~~~~~~~~
- The ``send_bytes`` adjustment now defaults to ``1`` and is deprecated
pending removal in a future release.
and https://github.com/Pylons/waitress/pull/246
Features
~~~~~~~~
- Add a new ``outbuf_high_watermark`` adjustment which is used to apply
backpressure on the ``app_iter`` to avoid letting it spin faster than data
can be written to the socket. This stabilizes responses that iterate quickly
with a lot of data.
See https://github.com/Pylons/waitress/pull/242
- Stop early and close the ``app_iter`` when attempting to write to a closed
socket due to a client disconnect. This should notify a long-lived streaming
response when a client hangs up.
See https://github.com/Pylons/waitress/pull/238
and https://github.com/Pylons/waitress/pull/240
and https://github.com/Pylons/waitress/pull/241
- Adjust the flush to output ``SO_SNDBUF`` bytes instead of whatever was
set in the ``send_bytes`` adjustment. ``send_bytes`` now only controls how
much waitress will buffer internally before flushing to the kernel, whereas
previously it used to also throttle how much data was sent to the kernel.
This change enables a streaming ``app_iter`` containing small chunks to
still be flushed efficiently.
See https://github.com/Pylons/waitress/pull/246
Bugfixes
~~~~~~~~
- Upon receiving a request that does not include HTTP/1.0 or HTTP/1.1 we will
no longer set the version to the string value 'None'. See
https://github.com/Pylons/waitress/pull/252 and
https://github.com/Pylons/waitress/issues/110
- When a client closes a socket unexpectedly there was potential for memory
leaks in which data was written to the buffers after they were closed,
causing them to reopen.
See https://github.com/Pylons/waitress/pull/239
- Fix the queue depth warnings to only show when all threads are busy.
See https://github.com/Pylons/waitress/pull/243
and https://github.com/Pylons/waitress/pull/247
- Trigger the ``app_iter`` to close as part of shutdown. This will only be
noticeable for users of the internal server api. In more typical operations
the server will die before benefiting from these changes.
See https://github.com/Pylons/waitress/pull/245
- Fix a bug in which a streaming ``app_iter`` may never cleanup data that has
already been sent. This would cause buffers in waitress to grow without
bounds. These buffers now properly rotate and release their data.
See https://github.com/Pylons/waitress/pull/242
- Fix a bug in which non-seekable subclasses of ``io.IOBase`` would trigger
an exception when passed to the ``wsgi.file_wrapper`` callback.
See https://github.com/Pylons/waitress/pull/249
- Trim marketing wording and other platform mentions.
- Add fetch-intersphinx-inventories.sh to sources
- Add local-intersphinx-inventories.patch for generating the docs
correctly
- update to version 1.2.1:
too many changes to list here, see:
https://github.com/Pylons/waitress/blob/master/CHANGES.txt
or even:
https://github.com/Pylons/waitress/commits/master
- Remove superfluous devel dependency for noarch package
- update to version 1.1.0:
* Features
+ Waitress now has a __main__ and thus may be called with 'python
-mwaitress'
* Bugfixes
+ Waitress no longer allows lowercase HTTP verbs. This change was
made to fall in line with most HTTP servers. See
https://github.com/Pylons/waitress/pull/170
+ When receiving non-ascii bytes in the request URL, waitress will
no longer abruptly close the connection, instead returning a 400
Bad Request. See https://github.com/Pylons/waitress/pull/162 and
https://github.com/Pylons/waitress/issues/64
- Update to 1.0.2
* Python 3.6 is now officially supported in Waitress
* Add a work-around for libc issue on Linux not following the
documented standards. If getnameinfo() fails because of DNS not
being available it should return the IP address instead of the
reverse DNS entry, however instead getnameinfo() raises. We
catch this, and ask getnameinfo() for the same information
again, explicitly asking for IP address instead of reverse
DNS hostname.
- Implement single-spec version.
- Fix source URL.
- update to 1.0.1:
- IPv6 support on Windows was broken due to missing constants in the socket
module. This has been resolved by setting the constants on Windows if they
are missing. See https://github.com/Pylons/waitress/issues/138
- A ValueError was raised on Windows when passing a string for the port, on
Windows in Python 2 using service names instead of port numbers doesn't work
with `getaddrinfo`. This has been resolved by attempting to convert the port
number to an integer, if that fails a ValueError will be raised. See
https://github.com/Pylons/waitress/issues/139
- Removed `AI_ADDRCONFIG` from the call to `getaddrinfo`, this resolves an
issue whereby `getaddrinfo` wouldn't return any addresses to `bind` to on
hosts where there is no internet connection but localhost is requested to be
bound to. See https://github.com/Pylons/waitress/issues/131 for more
information.
- disable tests. need network access.
Changes in rabbitmq-server:
- Apply patches to resolve CVE-2017-4967,CVE-2017-4965 (bsc#1037777)
0001-Escape-HTML-tags-in-policy-definition-fields.patch
0002-Don-t-echo-provided-encoding-value-back.patch
0003-Strip-off-pids-and-format-consumer-details-for-2-end.patch
0004-Format-Web-contexts.patch
Changes in release-notes-suse-openstack-cloud:
- Switch github URL from git@ to https:// to bypass authentication
Changes in rubygem-activeresource:
- Add bsc#1171560-CVE-2020-8151-encode-id-param.patch
Prevent possible information disclosure issue that could allow
an attacker to create specially crafted requests to access data
in an unexpected way (bsc#1171560 CVE-2020-8151))
Changes in rubygem-crowbar-client:
- Update to 3.9.2
- Enable SES commands in Cloud8 (SOC-11122)
Changes in rubygem-json-1_7:
- Add CVE-2020-10663.patch (CVE-2020-10663, bsc#1167244)
Changes in rubygem-puma:
- Fix indentation in gem2rpm.yml
- Add CVE-2020-11077.patch (bsc#1172175, CVE-2020-11077)
- Add chunked-request-handling.patch (needed for CVE-2020-11076.patch)
- Add CVE-2020-11076.patch (bsc#1172176, CVE-2020-11076)
- Add all patches to gem2rpm.yml
- Add CVE-2020-5247.patch (bsc#1165402)
'Fixes a problem where we were not splitting newlines in headers
according to Rack spec'
The patch is reduced compared to the upstream version, which was
patching also the parts that are not implemented in our old Puma
version. This applies to unit test as well.
Changes in zookeeper:
- Apply 0002-Apply-patch-to-resolve-CVE-2019-0201.patch
This applies the patch for ZOOKEEPER-1392 to resolve CVE-2019-0201
Should not allow to read ACL when not authorized to read node
(bsc#1135773)
- Various cleanups in spec file
Patchnames: SUSE-2020-2072,SUSE-OpenStack-Cloud-7-2020-2072
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
66 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE OpenStack Cloud 7:ansible-2.2.3.0-12.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1580209654.1d112d31f-9.66.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-4.0+git.1580209654.1d112d31f-9.66.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1580209654.1d112d31f-9.66.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-core-branding-upstream-4.0+git.1580209654.1d112d31f-9.66.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-ha-4.0+git.1585316203.d6ad2c8-4.52.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:crowbar-openstack-4.0+git.1589804581.9972163f0-9.71.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:grafana-4.6.5-1.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:keepalived-2.0.19-1.8.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:keepalived-2.0.19-1.8.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:kibana-4.6.3-5.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:memcached-1.5.17-3.6.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:memcached-1.5.17-3.6.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:monasca-installer-20180608_12.47-12.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-dashboard-theme-SUSE-2016.2-5.12.4.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-manila-3.0.1~dev30-4.12.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-manila-api-3.0.1~dev30-4.12.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-manila-data-3.0.1~dev30-4.12.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-manila-doc-3.0.1~dev30-4.12.3.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-manila-scheduler-3.0.1~dev30-4.12.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE OpenStack Cloud 7:openstack-manila-share-3.0.1~dev30-4.12.2.noarch | — |
|