Lucene search
RedHatRHSA-2015:1929HistoryOct 22, 2015 - 7:34 p.m.
(RHSA-2015:1929) Important: openstack-ironic-discoverd security update
2015-10-2219:34:24
access.redhat.com
20
0.007 Low
EPSS
Percentile
79.6%
Ironic provides bare metal provisioning for OpenStack nodes.
It was discovered that enabling debug mode in openstack-ironic-discoverd
also enables debug mode in the underlying Flask framework. If errors are
encountered while Flask is in debug mode, a user experiencing an error may
be able to access the debug console (effectively, a command shell).
(CVE-2015-5306)
All openstack-ironic-discoverd users are advised to upgrade to these
updated packages, which correct this issue.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | noarch | openstack-ironic-discoverd-ramdisk | < 1.1.0-8.el7ost | openstack-ironic-discoverd-ramdisk-1.1.0-8.el7ost.noarch.rpm |
| RedHat | 7 | noarch | openstack-ironic-discoverd | < 1.1.0-8.el7ost | openstack-ironic-discoverd-1.1.0-8.el7ost.noarch.rpm |
| RedHat | 7 | src | openstack-ironic-discoverd | < 1.1.0-8.el7ost | openstack-ironic-discoverd-1.1.0-8.el7ost.src.rpm |
| RedHat | 7 | noarch | python-ironic-discoverd | < 1.1.0-8.el7ost | python-ironic-discoverd-1.1.0-8.el7ost.noarch.rpm |
Related
openvas
openvas
Fedora Update for openstack-ironic-discoverd FEDORA-2015-5062
2015-11-13 00:00:00
osv
osv
Injection vulnerability that affects ironic-discoverd
2019-07-05 21:10:52
PYSEC-2015-28
2015-11-25 20:59:00
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:08:09
nvd
nvd
CVE-2015-5306
2015-11-25 20:59:06
debiancve
debiancve
CVE-2015-5306
2015-11-25 20:59:06
cve
cve
CVE-2015-5306
2015-11-25 20:59:06
fedora
fedora
[SECURITY] Fedora 22 Update: openstack-ironic-discoverd-1.1.1-1.fc22
2015-11-13 01:55:04
[SECURITY] Fedora 23 Update: openstack-ironic-discoverd-1.1.1-1.fc23
2015-11-12 23:33:21
prion
prion
Code injection
2015-11-25 20:59:00
cvelist
cvelist
CVE-2015-5306
2015-11-25 20:00:00
github
github
Injection vulnerability that affects ironic-discoverd
2019-07-05 21:10:52
redhat
redhat
(RHSA-2015:2685) Important: openstack-ironic-discoverd security update
2015-12-21 19:03:53
nessus
nessus
Fedora 22 : openstack-ironic-discoverd-1.1.1-1.fc22 (2015-5062ef3dbe)
2016-03-04 00:00:00
Fedora 23 : openstack-ironic-discoverd-1.1.1-1.fc23 (2015-16ecacb90b)
2016-03-04 00:00:00