(RHSA-2019:1669) Important: openstack-ironic-inspector security update

Nodes managed by Ironic may use the ironic-inspector auxiliary service to discover hardware properties. Hardware introspection or hardware properties discovery is a process of getting hardware parameters required for scheduling from a bare metal node, given its power management credentials (e.g. IPMI address, user name and password).

Security Fix(es):

• openstack-ironic-inspector: SQL Injection vulnerability when receiving introspection data (CVE-2019-10141)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.