157 matches found
PYSEC-2026-1708 OpenStack Cinder, Glance, and Nova vulnerable to arbitrary file access
An issue was discovered in OpenStack Cinder through 24.0.0, Glance before 28.0.2, and Nova before 29.0.3. Arbitrary file access can occur via custom QCOW2 external data. By supplying a crafted QCOW2 image that references a specific data file path, an authenticated user may convince systems to...
TencentOS Server 4: openstack-glance (TSSA-2025:0076)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0076 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
TencentOS Server 4: openstack-cinder (TSSA-2025:0077)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0077 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
EUVD-2013-0003
Malware in sbrugna...
EUVD-2020-0061
Malware in sbrugna...
EUVD-2022-4978
Malicious code in bioql PyPI...
EUVD-2022-3382
Malicious code in bioql PyPI...
EUVD-2022-3861
Malicious code in bioql PyPI...
EUVD-2023-0384
Malicious code in bioql PyPI...
EUVD-2022-4548
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2020-10755
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An insecure-credentials flaw was found in all openstack-cinder versions before openstack-cinder 14.1.0, all openstack-cinder 15.x.x versions before...
Linux Distros Unpatched Vulnerability : CVE-2022-47951
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in OpenStack Cinder before 19.1.2, 20.x before 20.0.2, and 21.0.0; Glance before 23.0.1, 24.x before 24.1.1, and 25.0.0; and Nova before...
Linux Distros Unpatched Vulnerability : CVE-2017-15139
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in openstack-cinder releases up to and including Queens, allowing newly created volumes in certain storage volume configurations to...
RHEL 6 / 7 : openstack-cinder (RHSA-2015:1206)
The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2015:1206 advisory. OpenStack Block Storage cinder manages block storage mounting and the presentation of such mounted block storage to instances. The backend physic...
RHEL 7 : openstack-cinder (RHSA-2017:0156)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:0156 advisory. OpenStack Block Storage cinder manages block storage mounting and the presentation of such mounted block storage to instances. The backend physical...
RHSA-2015:1206 Red Hat Security Advisory: openstack-cinder security and bug fix update
Bulletin has no description...
RHSA-2014:1788 Red Hat Security Advisory: openstack-cinder security and bug fix update
Bulletin has no description...
RHSA-2014:1787 Red Hat Security Advisory: openstack-cinder security and bug fix update
Bulletin has no description...
RHSA-2013:1198 Red Hat Security Advisory: openstack-cinder security update
Bulletin has no description...
RHSA-2013:0658 Red Hat Security Advisory: openstack-cinder security and enhancement update
Bulletin has no description...